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PROBLEM 


The  difference  between 
networking  and  not  working. 

Some  systems  require  you  to  reconfigure  your  network  infrastructure 
to  match  their  standards.  Not  the  IBM  BladeCenter®  with  Intel®  Xeon® 
processors.  It  offers  a  broad  range  of  networking  technologies— including 
some  of  the  most  advanced  virtualization  solutions  in  the  industry.  So 
you  can  choose  the  one  that  works  best  with  your  infrastructure.  And 
IBM  BladeCenter  can  save  you  up  to  40%  on  networking  costs  versus 
competitive  offerings.’ 


Tjke  10. minutes  to '•  • 

Learn  how  you  could  achieve  a  3-month  ROI  on  your  migration 


with  our  Systems  Consolidation  Tool.  Visit  ibm.com/systems/blade 
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Open  Source’s 
People  Problem 


Projects  are  multiplying,  yet  a  shortage  of  in-house  skills  could  slow  them  down. 


Open  Source 
Unchecked 


Tools  to  Ease 
irs  Pain 


Powerful 

Experiments 


i  A  few  data  center  managers 
are  boldly  using  alternative  power 
sources,  such  as  solar  arrays, 
gas  turbines  and  fuel  cells. 


Hallmark’s 
Fresh  Start 


12  The  greeting  card  company 


customer  conversion  rate. 


Datacenter 
Double  Duty 


IT  workloads  are  increasing 
as  more  technology  is  added  but 
staffing  lev^s  plateau. 


READER  FEEDBACK 


GOiraDMNIliUI 


Sick  and  Tired  of  IT 
Taking  the  Blame 


Collapse  of  Borders.”  It  was  a ; 
Monday  morning  wrap-up. 

But  I  do  take  issue  with  one 
ment^  wb^  he  says  that  **no  o 
was  able  to  convince  manageiE 
reinvent  Expert.”  Expert  was  B 
inventOTy  managnnent  system 


Why  is  IT  beii^  made 
the  scapegoat  once  a^in 
for  C-level  incompetence? 
I  t-hink  t-hat  E3^>ert  S 


be^  pretty  obvious.  I 
can’t  imagine  that  one  needed  an  MBA 
to  see  how  the  system  (and  I’m  not  just 
talking  about  technology)  was  foiling. 
Hayes  seems  to  im{^  not  cxily  that  IT 
staff  were  the  cmly  ones  who  could  see 
the  proUem,  but  that  IT  was  also  the 
only  one  responsible.  Really? 

If  the  foil  of  Borders  was  IT’s  fault. 


Pm  growing  tired  of  IT  taking  one 
for  the  team.  And  it’s  one  thing  when 
Marketing  and  other  departments 
pin  one  on  IT.  Let’s  face  it,  they’re  not 
going  to  admit  any  guilt  themselves. 
But  ^Kdly  is  Frank  Hayes  reinfc»cing  a 
myth  and  a  stereotype? 

Mark  Simchock,  chie/ alchemist. 
Alchemy  United 

iPad  ^Review’ 

Lacks  Objectivity 


I  am  not  an  Apple-basher  at  all, 
but  I  think  that  any  product  evalua¬ 
tion  should  be  objective  and  critical. 

Seriously,  would  any  “Holy  Grail  o 
computing”  today  lack  a  USB  port? 
Hark  Pitcavage 


TOUGH  QUESTION  #14 


CAN  A  NEXT-GEN  FIREWALL  ENABLE 
GRANULAR  APPLICATION  CONTROL  FOR 
YOUR  ENTIRE  ENTERPRISE? 


SONICWALL 

THE  ENTERPRISE. 


SONICWALL 


ETHERNET 

FABRIC. 

OTHERS  TALK  AROUND  IT.  WE  DEPLOY  IT. 


Brocade  is  the  only  company  delivering  Ethernet  fahnc 
technology  that  enables  cloud-optimized  networks  i,si,-  m. 

Brocade  Ethernet  fabrics  deliver  a  flatter  network 
architecture  that  reduces  cost  and  complexity  while  giving 
you  greater  flexibility  to  deliver  applications  anywhere. 

When  the  Mission  Is  Critical,  the  Network  Is  Brocade. 

Learn  more  at  Brocade.com/Everywhere 
#EthernetFabric 


BROCADE 


HEADS  UP 


Visa,  Gap  Send 
Discount  Offers 
To  Cellphones 


SECURITY  MONITOR 


Phishing  Becomes  More  Sophisticated 


The  successful  use  of  phishing 
emails  In  breach  secure  oiganiza- 
tions  like  Oak  Ridge  National 
Laboratory  and  EMC’s  RSA  security 
diviskm  is  a  stark  reminder  of  the  serious 
threat  posed  by  a  type  of  attack  that  was  previ¬ 
ously  dismissed  as  W-tech. 

The  Oak  Ridge  lab  last  month  disclosed  that 
sophisticated  data-stealing  malware  had  infil¬ 
trated  its  networks.  The  breach  originated  in  a 
phishing  email  sent  to  about  570  employees. 
The  email  was  disguised  to  look  like  a  memo 
about  benefits  changes  written  by  the  lab’s  HR 
department.  When  a  handful  of  employees 
clicked  on  the  embedded  link  in  the  email, 


1,000  employees  in  your  organization  and 
you  train  them  all  on  not  opening  untrusted 
attachments,  you’ll  still  have  someone  doing 
it.  This  is  not  a  problem  you  can  train  yourself 

Exacerbating  the  problem  is  the  growing 
sophistication  of  phishing  campaigns. 

Organized  cybercrime  groups  are  using 
convincingly  crafted  emails  to  target  high- 
level  executives  and  employees  within  the 
organizations  they  want  to  attack.  In  many 
cases,  the  phishing  emails  are  personalized, 
localized  and  designed  to  appear  as  though 
they  originated  from  a  trusted  source. 

Increasingly,  infiirmation  from  social  net- 


global  processing  network,  will  be 
expanded  to  retailers  nationwide. 
Visa  said,  although  no  timeline  was 
announced. 

Gap  and  Visa  began  a  pilot  of  the 
real-time  text  message  system  in 
November.  Customers  enroll  via  a 
secure  website  and  are  sent  Gap 
offers  when  they  use  Visa  cards  to 
complete  transactions  that  meet 
certain  criteria  -  for  example,  if 
they  buy  something  at  a  store  In  a 
specified  ZIP  code.  Once  the  offers 
appear  on  their  phones,  the  cus¬ 
tomers  can  take  advantage  of  them 
by  showing  the  text  messages  to 
Gap  sales  clerks. 

Visa  said  that  high-speed  transac¬ 
tion  processing  helps  retailers  reach 


while  they’re  still  out  shopping. 


1,000  Oracle/Sun 
clients  recently 
upgraded. 


Since  2009,  over  1,000  clients  have  moved  business  to  IBM  Power  Systems'" 
from  Oracle/Sun,  Some  were  swayed  by  the  up  to  60%  drop  in  IT  costs.  Others 
by  the  3x  per  core  performance  (per  both  TPC-C  and  SAP  SD  benchmarks). 
And  some  by  both.  Though  all  saw  the  strong  business  case  for  moving.  We'd 
welcome  the  opportunity  to  show  how  IBM  could  help  your  organization,  too. 

ibm.com/facts 
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NEWS  ANALYSIS 

Amazon  Service  Outage 
Reinforces  Cloud  Doubts 

The  incident  could  curb  business  adoption  of  hosted  application 
or  storage  services.  By  Patrick  Thibodeau  and  Jaikumar  Vijayan 


HE  PROLONGED  OUTAGE  of  Amazon.com's  EC2  cloud 
service  late  last  month  could  set  back  adoption  of 
hosted  services  by  giving  some  companies  —  especially 
those  that  are  on  the  fence  about  migrating  to  the 
cloud  —  a  strong  argument  for  taking  it  slowly. 

For  other  organizations,  Amazon’s  problems  reinforced  an 
already-held  belief  that  cloud  services  can’t  match  an  enterprise 
IT  operation  when  it  comes  to  meeting  the  technology  needs  of 
business  or  government  entities. 

Mote  than  a  week  after  the  days-long  partial  outage  started 
on  April  zi.  Amazon  released  a  detailed  5,700-word  postmortem 
and  mea  culpa  that  identified  the  culprit  as  a  configuration  error 
that  occurred  during  a  network  upgrade. 

“The  recent  outage  confirmed,  for  us,  that  cloud  services  are 
not  yet  ready  for  prime  time,"  said  Paul  Haugan,  CTO  for  the  city 
of  Lynnwood,  Wash.  The  city  had  been  looking  into  Amazon’s 


increased  IT  concerns  about 
application  availability  and  the 
security  of  cloud  services. 

“Obviously,  these  issues  are 
very  heightened  right  now  and 
will  continue  to  be  so  for  quite  a 
while  in  li^t  of  the  outage,”  said 
Gartner  analyst  Kyle  Hilgendorf. 
“Amazon  portrays  an  aura  of 
invincibility,  whether  inten¬ 
tional  or  not,  and  this  outage 
is  going  to  remind  enterprise 
customers  that  nobody  is  perfect 
and  increased  due  diligence  is 
required.” 

Hilgendorf  said  IT  managers  remain  most  concerned  about 
cloud  security  —  including  whether  user  authentication  and 
access  control  measures  are  adequate,  how  much  access  a  service 
provider  has  to  a  customer’s  systems  and  data,  and  the  potential 
for  an  accidental  release  of  protected  daU. 

The  Amazon  outage  also  reinforces  the  fact  that  there’s  no  way 
to  directly  migrate  customer  data  to  another  provider,  said  Arun 
Taneja,  an  analyst  at  Tatteja  Group.  If  a  service  goes  down,  the  host 
company  must  return  the  rlata  to  its  customer,  which  then  must 
find  another  provider  or  revert  back  to  storing  it  locally,  he  said. 

Coupled  with  recent  decisions  by  EMC,  Iron  Mountain, 

Cirtas  Systerds  and  others  to  shut  down  or  scale  back  hosted 
storage  offerings,  the  Amazon  incident  could  spur  a  backlash 
against  cloud  storage  services,  even  jiiough  they  can  offer  good 

Lucas  Hearian  contributed  to  this  story. 


The  recent  outage  confirmed,  for  us,  that  cloud  services  are  not  yet  ready  for  prime  time. 


Goode  Apps  Tops 
Exchange  at  Cinram 

Citing  cost  and  service  issues,  the  DVD  maker  decided 
against  upgrading  from  Microsoft  Exchange  5.5  and 
turned  to  Google  Apps  instead.  By  Sharon  Gaudin 


Exchange  5.5  —  an  email 
released  in  1997  —  early  las 
Before  that,  Murrey  said,  "s 


Last  spring.  Murrey  learned  that  the 
x)st  of  moving  to  the  doud  version  of  Ex- 
:hange,  including  implementation,  would 
)e  $180  to  $200  per  seat  per  year,  which 
vas  considerahly  hitler  than  he  expected. 

Murrey  said  Microsoft  and  partner 


into  a  format  that  would  he  usahle.” 

Microsoft  said  that  the  price  it  quote 
Cinram  was  specihc  to  that  joh. 
Cinram  was  spending  about  $225  pe 


Cloud  by  SunGard,  2011 


Cloud  by  Van  Gogh,  1890 


A  work  of  art  in  secure  computing. 


Building  a  better  cloud  takes  a  revolutionary  approach  to 
virtualization  that  goes  far  beyond  conventional  solutions. 
With  a  resilient  infrastructure  and  robust  security,  SunGard 
provides  maximum  protection  and  a  fully  managed  solution 
that  virtually  eliminates  the  risk  of  failure.  Navigate  the  cloud 
with  confidence  as  it  dynamically  scales  to  meet  your  needs. 
With  leading-edge  technology  and  a  staff  of  accomplished 
professionals,  SunGard  can  help  make  your  next  cloud 
computing  project  a  work  of  art. 


Download  the  white  paper 
"Building  a  Better  Cloud" 
at:  sungardas.com/cloud11 


SUNGARD  AVAILABILITY  SERVICES 
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Something  most  people  don’t 
know  about  you:  1  love  to  travel, 
and  when  we  go,  I  like  to  do 
things  like  zip-lining  through 
the  jungle  canopies.  I've  done 

It  a  couple  of  times,  in 

Costa  Rica  and  Jamaica. 

Technology  you  could 

HERYL  WHITIS  is  vice  president 
■  ^  and  CIO  for  Raytheon’s  Networfe 

Centric  Systems,  a  group 
with  13,000  employees,  8,000 
of  whom  are  engineers  and  scientists. 

Working  in  the  aerospace  and  defense  field 
is  a  passion  for  her.  one  she  discovered 
almost  by  accident  with  her  first  job  at 

Northrop  Worldwide  Aircra^  Services.  The 
industry  holds  a  personal  significance  for 

Cheryl  Whitis 

not  live  without:  1  am  terrible 
with  directions,  so  to  me 

GPS  systems  are  the  most 
wonderful  inventions. 

Favorite  nonwork  pastime: 

We  spend  quite  a  bit  of  time 

her  as  well;  Both  her  father  and  father- 

Whitis  takes  pride  in  the  fact  that  she 
contributes  to  U.S.  national  defense  and 
the  protection  of  its  warfighters. 

This  Raytheon  CIO  worked 
to  gain  control  over  her 
department’s  budget. 

boating  with  our  family. 

Our  sons  live  nearby,  and  1  have 
two  grandsons  now,  a  4-year-old 

defense  Industry?  Raytheon  is  what 

I  would  call  a  Tier  2  aerospace  and 
defense  company.  We  are  not  manufac¬ 
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turing  platforms  like  the  actual  aircraft 
Continued  on  page  14 

POSTAGE  WILL  BE  PAID  BY  ADDRESSEE 


I^PC 

ATTENTION  CRC:  b607v 
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Download  White  Paper  #24,  'Effect  of  UPS  on  System 
Availability,"  and  register  to  WIN  APC  Smart-UPS 
1500VA  rack/tower  LCD  120V,  a  $779  value! 

Visit  www^pc.com/promo  Kay  Code  l)607v  Cal  888-2B»4P0C  x6267 


III 


THE  GRILL  |  CHERYL  WHITIS 


Continued  from  page  12 
itself  or  the  actual  tanks, 
but  a  lot  of  our  products 
go  onto  the  aircraft  or  go 
in  the  tanks.  We  bad  been 
used  to  just  delivering  our 
products  and  having  some 
afterlife  support,  but  more 
and  more  we  have  what  we 
call  "product  life  manage¬ 
ment,”  From  the  time  you 
conceive  the  design  until 
your  customer  retires  that 
asset  from  its  portfolio,  we 
are  responsible  for  all  of  that 
support,  and  that  drives  a 
lot  of  tequirements  on  the 
IT  organization.  So  I  think 
we  ate  uniquely  positioned 
to  help  grow  our  business 
by  providing  all  of  the  tools 
necessary  to  do  that. 


U  I  always  try 
to  tell  people 
that  there 
is  not  just 
one  way  to  get  to  the 
top.  There  are  lots  of 
different  paths. 


leiifes  do  you  face?  while 
many  companies  have  to 
worry  about  export  regula¬ 
tions,  we  also  have  to  worry 
about  ITAR  —  Internation^ 
Traffic  in  Arms  Regulations 
—  because  of  the  products 
we  produce.  I  think  that  our 
security  concerns  are  even 
more  substantial,  because  if 


more  dangerous  for  the  U.S. 

A  growing  concern  for  us 
is  the  consumerization  of  IT 
products.  I  can  remember 
a  time  when  employees 

weren’t  allowed  to  bring  cellphones  in  because  they 
had  cameras.  The  amount  of  data  that  you  can  store 
on  these  portable  devices  represents  additional  risks 
fm  us.  We  spend  a  lot  of  time  educating  employees 
on  security  matters  and  safe  ways  to  use  consumer 
technologies.  We  have  been  spending  time  on  digital 
and  information  rights  management,  trying  to  put 
multiple  layers  of  security  around  the  data  that  we 
protect.  At  the  same  time,  we  are  trying  to  invest 
in  bow  we  adopt  more  of  this  consumerization  of 
products.  I  would  love  to  see  a  time  when  we  could 
really  be  device-agnostic  and  not  have  to  control  all  of 
that  so  intensely. 


YOU  impleinented  some  changes  when  you  took  YOur 
current  position.  Did  you  encounter  anY  chalienges 


was  that  the  business  really  didn’t  see  IT  as  a  major 
part  of  the  delivery  of  their  product.  It  was  more 


the  traditional  “make  sure  my  deskte^  is  working." 
Budget  for  our  key  products  was  actually  held  and 
managed  in  the  other  functions.  There  was  little 
strategic  planning  across  the  company  of  where  we 
needed  to  put  our  investments.  I  had  to  woik  with  my 
peers  to  get  my  budget  back,  and  we  set  up  a  gover¬ 
nance  with  our  business  partnership  council  on  what 
we  would  do  with  those  laige  investments.  We  didn’t 
want  to  be  restricted  by  the  budget  [as  to)  where  we 
put  our  efforts.  And  for  the  first  time,  it  made  them 
aware  of  what  was  important  to  other  functions  and 
other  parts  of  the  business. 

You  spoke  at  a  Women  in  TechnologY  International 

summit  in  2001,  to  women  who  wanted  to  become 

CIOs  or  CTOs.  What  advice  would  YOU  give  todaY  to 

women  who  want  to  advance  their  careers,  both  in 


things  are  specific  to  one  gender  anymore.  I  have 
seen  young  women  think  that  they  have  to'operate 
the  same  way  that  a  man  would,  and  I  always  try  to 

tell  people  that  there  is  not  just  one  way  to  get  to  the 

top.  ThOT  are  lots  of  different  paths.  I  personally 
took  a  couple  of  years  off  when  my  first  son  was  bom. 
You  don’t  have  to  have  a  role  model  in  the  exact  posi¬ 
tion  where  you  aspire  to  be  that  is  exactly  like  you. 
You  need  to  be  well  rounded,  but  you  just  really  need 
to  be  the  best  that  you  are,  and  you  are  going  to  be 
unique  in  what  you  bring  to  those  leadership  roles. 

Leadership  is  looking  for  someone  who  brings  a 
different  skill  and  ability  to  the  role  so  that  they  have 
a  very  well-rounded  leadership  team.  But  in  IT,  I  do 
think  that  women  have  to  think  about  the  business, 
not  just  the  technology.  The  higher  up  you  go,  the 
bro^r  your  skill  sets  need  to  be  and  the  more  they 
need  to  focus  on  understanding  the  business  and  how 
IT  can  bring  value  to  the  business.  It  is  important  to 
cultivate  both  aspects  —  the  technology  and  your 
knowledge  of  the  business. 


a  challenge  that  we  do  not  have  mote  women  in  those 
positions  that  we  aspire  to  get  to.  I  think  it  is  a  chal¬ 
lenge  for  people  of  color  as  well.  Raytheon  is  doing 
a  fabulous  job  in  that  area.  Aerospace  and  defense 
companies  get  stereotyped  as  not  being  too  forward¬ 
leaning  on  things  like  that,  and  to  some  extent  there 
are  probably  some  ways  we  are  not.  but  I  think  we 
have  created  a  good  balance.  Out  retention  rate  for 
our  young  employees,  particularly  women  coming 
in,  has  improved  significantly.  But  something  that 
our  company  is  very  concerned  about  is  women  in 
math  and  the  sciences.  We  are  not  graduating  enou^ 
people  in  general  with  those  skills.  So  a  big  concern 
we  have  in  out  company,  as  the  boomers  start  retir¬ 
ing,  is  how  we  fill  those  science  positions. 

—  Interview  by  Rebecca  Unke. 
a  writer  and  editor  living  outside  of  Boston 
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OPINION 


Normally, 
anything  done 
on  a  company's 
hardware  is 
considered 
rightfully  acces- 
I  sibletothebusi- 
I  ness.  But  should 
that  include 
location  data? 


PrastonGrallaisa 

ComputerworltLwm 
contributing  editor 
and  the  author  of 
more  than  35  books, 
including  How  the 
Internetworks 
(Oue.  2006). 


CRflm 


Smartphone  Privacy: 

IT  Caught  in  the  Crossfire 


The  news  that  iPhones,  iPads  and  Android  devices  secretly  track  the 
locations  of  their  owners  poses  a  potentiaUy  serious  dilemma  for  IT 
staffs.  If  someone’s  manager  asks  IT  to  retrieve  that  data  and  hand 
it  over,  what  should  IT  do?  We  certainly  have  to  acknowledge  that  a 
device  that’s  used  for  business  purposes  but  automatically  tracks  personal 

information  blurs  the  line  between  personal  and 
corporate  information. 

First,  a  bit  of  background.  It  wi 


vealed  that  iWiones  and  iPads  track  their  owners’ 
locations  and  store  that  information  in  unen¬ 
crypted  61es  on  the  devices  and  on  the  owners’ 
computers.  Ainlroid  devices  do  the  same,  but  the 
Hies  aren’t  also  stored  on  computers. 

In  the  case  of  iPhones  and  iPads,  <^proximately 
too  data  points  —  in  other  words,  precise  infor¬ 
mation  about  places  the  user  has  visited  —  are 
logged  every  day.  A  sin^e  file  can  have  tens  of 
thousands  of  these  data  points. 

Because  the  files  containing  these  data  points 
can  be  found  on  employees’  computers,  the  IT 
staff  has  easy  access  to  them.  And  even  in  the 
case  of  Android  devices,  where  the  data  is  stored 
only  on  the  phones  themselves,  IT  staffers  can  get 
access  to  them  as  well,  by  siorply  taking  posses¬ 
sion  of  the  devices. 

Normally,  anything  dcme  on  a  company’s 
hardware  is  considered  rightfully  accessible  to  the 
business.  Email  and  information  about  the  web¬ 
sites  a  user  visits  aren’t  considered  private  —  the 
company  has  the  right  to  examine  it. 

T^t  standard  would  seem  to  apply  as  well 
when  the  hardware  is  a  smartphone  or  a  tablet. 
Email,  Internet  and  app  use  would  fall  under 
the  dominion  of  the  business,  just  as  they  would 
with  a  PC.  and  could  rightfully  be  examined.  But 
can  that  guideline  be  extended  to  location  data? 
Employees  are  often  required  to  carry  company- 


woik  and  on  weekends.  And  nc 
as  they  do  so,  their  movements 
with  the  daU  stored  in  a  file. 


iK:luding  after 
we  know  that 
e  being  tracked. 


L^llyHazy 

So  rU  ask  the  question  again:  Does  the  user's 
employer  have  the  right  to  examine  that  data  if 
it  owns  the  devices  it’s  stored  on?  And  if  it  does, 
should  it  do  so?  Is  it  really  an  employer’s  business 
if  an  employee  goes  to  his  dau^ter’s  softball 
practice  on  a  Saturday  afternoon?  How  about  if  an 
employee  goes  to  a  strip  club  on  a  Saturday  ni^t? 
Even  though  I  don’t  frequent  strip  clubs,  I  want  to 
say  no,  that  information  should  remain  private. 
Cut  if  the  information  is  stored  on  a  device  that 
belongs  to  the  employer,  it's  a  hazy  legal  issue. 

IT  staffs,  which  have  the  technical  capsfoility  to 
gather  the  location  data,  will  inevitably  be  caught 
in  the  crossfire  when  this  question  arises.  But 
until  companies  develop  clear,  legally  valid  guide¬ 
lines  about  what  information  can  be  gathered  and 
what  can’t,  IT  shouldn’t  do  it 

And  this  is  only  one  of  several  complicated 
issues  on  the  horizon.  For  example,  when  someone 
uses  a  personal  smartj^one  to  conduct  company 
business,  is  ev^ything  on  the  [^ne  fair  game 
the  enterprise? 

The  upshot  If  you’re  in  IT,  get  your  company 
to  develop  clear  guidelines  on  smartphone  data 
now.  If  you  don’t  it’ll  come  back  to  bite  you  in  the 
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can  you  change 
the  game? 

you  can 


I  But  do  it  predictably.  Go  for  more  than  marginal  improvement. 

'  Don't  create  the  kind  of  change  that  creates  chaos  and  disruption. 
Change  the  game.  But  change  it  effectively  and  intelligently. 

With  our  approach,  we  can  help  you  get  to  market  faster  by 
bringing  "managed”  change  to  the  entire  enterprise. 

Step  by  step,  starting  where  the  demand  is  greatest,  our 
virtualization  management  and  cloud  technologies  can  help 
you  change  the  game  while  making  your  business  more  agile. 

To  find  out  more  about  our  virtualization  and 
cloud  solutions,  visit 

+  + 
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OPEN  SOURCE  I  SPOTLIGHT 


OPEN 

SOURCE'S 

PEOPLE 

PROBLEM 

Projects  are  multiplying,  yet  a  shortage  of  in-house  skills 
could  slow  them  down,  byimarybrandel 


Team  in  Training 

Most  rr  shops  say  they’re  training  in-house  staffers 
to  handle  open-source  projects: 


Collision  Course 
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But  there’s  a  catch:  Whereas  users  can  receive  training  hom  adopting  open-source  applications  is  that  they  might  not  have 

Red  Hat  and  even  become  certified  in  Linux,  they’re  on  their  own  the  skills  they  need  in-house.  In  a  survey  conducted  by  Computer- 
when  it  comes  to  the  security  applications.  “It’s  mote  a  matter  of  world  in  March,  56%  of  the  159  respondents  said  that  they  expect 


Team  in  Training 


C++  developers  in  Ruby  on  Rails,  you  mi^  lose  that  benefit." 

Dice.com  is  seeii^  demand  for  open-source  skills  in  its  job 
postings.  Since  2010,  the  number  of  postings  for  all  technology 
jobs  has  grown  by  25%,  whereas  the  number  of  postings  seeking 
people  with  Linux,  Python  or  Ruby  on  Rails  expertise  has  grown 
31%,  53%  and  84%,  respectively  (see  “Right  Skills,  Right  Time," 
page  24).  In  some  cases,  employers  ate  ofering  higher  salaries  to 
people  with  open-source  skills.  While  IT  salaries  have  been  gen¬ 
erally  fiat  year  over  year,  salaries  for  people  who  know  Python 
are  up  7.1%,  and  salaries  for  those  with  Perl  expertise  are  up 
4.3%.  “We’re  definitely  seeing  larger  increases  for  these  scripting 
languages,”  says  Hill.  “People  are  willing  to  pay  more  for  those." 

Additionally,  IT  professionals  skilled  in  Linux  tend  to  earn 
as  much  as  10%  more  than  their  peers,  according  to  Dice.  The 
average  salary  for  people  familiar  with  Red  Hat  and  Novell  SUSE 
Linux  is  $87,500,  compared  with  $79,000  for  IT  workers  overall. 

Companies  that  need  open-source  skills  are  ofiering  all  kinds  of 
working  arrangements,  says  Hill,  noting  that  job  postings  are  evenly 
distributed  across  full-time,  contract  and  telecommuting  positions. 

Feeling  Their  Way 

A  paper  published  in  the  March  2010  issue  of  the  Association 
for  Computing  Machinery’s  Communications  0/ the  ACM  maga- 
zine  also  cited  a  dearth  of  expertise  as  a  barrier  to  open-source 
adoption.  According  to  the  paper,  titled  “The  Organizational 


Collision  Course 


The  biggest  benefit  of  open  source,  in  addition  to  the  cost  savings, 
is  development  speed.  But  if  you  have  to  spend  all  your  time  training  your  C++ 
developers  in  Ruby  on  Rails,  you  might  lose  that  benefit. 


MICE  Hill..  MANAGING  DIRECTOR.  DICE.COM 


community  is  constantly  modifying,  extending  and  adapting  open- 
source  components,”  Biderman  says.  He’s  looking  into  software 
from  a  German  company  that  would  support  version  control  on 
MediaWiki.  But  in  the  meantime,  he’s  avoiding  any  upgrades  or 
improvements  to  the  system.  Td  like  to  he  in  a  mote  flexible  mode, 
where  I  can  stay  current  with  latest  releases,  and  that  would  be  by 
purchasing  a  turnkey  version  with  a  support  package,”  he  says. 

Hard  to  Find,  Hard  to  Keep 

At  Media  General,  Miller  has  found  that  employees  who  master 
open-source  security  tools  tend  to  get  lured  away  to  more 
challenging  positions  that  pay  mote.  “I  refer  to  them  as  ’gradu¬ 
ates,’  ’’  he  says.  “As  people  become  senior,  especially  in  security, 
they  want  more  challenges  than  we  can  ofer  them  at  a  media 
company,  so  they  grow  here  and  get  more  somewhere  else.” 

But  Miller  intends  to  continue  developing  skills  internally 
because  his  other  option  is  to  pay  salaries  that  he  can’t  aSbtd. 
“Those  who  are  knowledgeable  in  open  source  tend  to  be  mote 
senior  people  with  mote  experience,  so  there’s  a  huge  diSeience  in 
salary,”  he  says.  In  fact,  after  struggling  to  hire  Linux  employees  — 


hs  —  Media  Oneral 
hI  up  outsourcing  its  Linux  initiatives.  Miller  says  one  of  the 
reasons  he  faces  such  challenges  is  because  Media  General  is  a 
midsize  employer  in  a  job  market  with  bigger  and  better-paying 
Linux  shops. 

Carl  Weddle,  director  of  IT  at  Quality  Trailer  Products,  agrees 
that  location  has  a  lot  to  do  with  finding  open-source  talent. 
Located  in  Azie,  Texas,  just  west  of  the  Dallas/Foct  Worth  inetro- 


atrd  then  adopted  open-source  reporting,  business  intelligence, 
daubase,  security  and  content  catalogue  tools.  It  also  uses  the 
open-source  LAMP  stack  for  Web  services.  Half  of  Quality  Trailer’s 
desktops  now  use  OpenOflBce,  and  the  company  has  standard¬ 
ized  on  the  Firefox  browser.  Weddle  estimates  that  60%  to  75%  of 
Quality  Trailer’s  computing  systems  rely  on  open-source  software. 

However,  it’s  much  n»te  difiicult  to  find  people  with  open- 
source  skills  in  AzIe  than  it  is  in  the  larger  cities.  “Over  here,  the 
old  saw  about  ‘No  one  ever  got  fired  for  using  IBM  and  Micro¬ 
soft’  holds  pretty  good  sway,”  he  says.  When  an  employee  with 
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The  Way  to  Better  Science." 

Cray  builds  computers  that  accelerate  solutions  to  science 

and  engineering's  toughest  challenges.  Since  1976, 
Cray  systems  have  brought  unparalleled  performance 
and  processing  capability,  enabling  countless  scientific 
breakthroughs.  And  with  solutions  ranging  from  the 
deskside  to  the  datacenter,  Cray  has  the  answer  for  you. 
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WEB  HOSTING.  TWICE  AS  SECURE. 


1M  nilAI  H 


Double  Security,  Double  Reputability: 


No  one  can  afford  downtime  of  their  website... 

l&l  is  now  offering  dual  hosting  for  the  ultimate  security  of  your  website. 
Your  website  is  hosted  in  two  different  locations  in  our  data  center.  If  the  first 
location  is  unexpectedly  interrupted,  your  site  will  automatically  continue 
running  in  the  second  location  -  without  any  data  loss. 


ncTiNr; 


No  other  web  host  offers  as  much  expertise,  know-how  and  quality 
as  l&l:  l&l  combines  over  20  years  of  web  hosting  experience  with  the  latest 
technology  in  our  high-speed  and  high-performance  American  data  center. 

More  than  1,000  IT  professionals  will  continue  to  develop  our  top  performance 
web  solutions  for  years  to  come. 

NEW;  1&1  is  pleased  to  offer  double  security  for  your  website  with  l&l  Dual 
Hosting!  All  at  unbeatably  low  prices! 

Double  Security: 

1&1  Dual  Hosting 

Fast  Global  Network  Connectivity: 
210  GBit/s  Connection 

Top  Performance: 

High-end  Servers 

Environmentally  Responsible: 

100%  Renewable  Energy 

Solid  Technical  Foundation: 

Over  1,000  In-house  Developers 


1-877-GO-1AND1  www.1and1.com 
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enthusiasm  hr  open  source,”  he  says. 

At  ACP  Interactive,  a  San  Frandsco-based  marketing  firm, 

IT  Director  Ed  Skokowski  says  he  too  has  lost  staffers  who  have 
moved  on  after  gettii^  experimce  with  an  open-smirce  ^lica* 
tkMi  —  in  his  case,  Perl,  which  ACP  uses  extensively. 

Building  the  Skills 

In  light  of  the  salary  premiums  companies  have  to  pay  to  recruit 
people  with  open-source  skills,  it’s  no  wonder  the  preferred 
method  of  acquiring  such  expertise  seems  to  be  training  in-house 
staff.  In  ComputerworU’s  March  survey,  85%  of  the  respondents 
said  they  chose  that  c^ion  instead  of  hiring  outside  contractors. 

To  Skokowski,  teaching  open  source  is  like  teaching  an  old  dog 

rather  than  an  intrusive  one,  and  knowing  the  ramifications  of 
each,  is  a  matter  of  using  the  tools  in  different  circumstances  over 
time  —  maybe  six  months  to  a  year. 

Miller  says  vendors  try  to  make  comrrtercial  tools  easy  to  use, 
with  demos,  GUI  wrappers  and  lots  of  help  files.  “That’s  a  big  relling 
point,  because  it  makes  it  easy  for  someone  who  doesn’t  have  a  lot  of 
experience  to  walk  in  and  do  what  they  need  to,”  be  says. 

Both  Nessus  and  Snort  offer  subscriptions  for  a  limited 
amount  of  support.  For  instance,  you  can  get  help  if  you’re 
loading  a  pattern  file  incorrectly  or  the  scanning  engine  isn’t 
updating,  “but  you’re  not  going  to  get  the  nitty-gritty  of  how  to 
schedule  scans,”  Miller  says. 

Although  he  tries  to  hire  internal  staffers  who  are  sharp  and 

to  Linux,  and  while  those  systems  are  now  up  arxl  rurming, 
Skokowski  says  there  were  a  few  false  starts  over  a  five-year 
period.  “Just  getting  the  printers  to  work  was  a  two-to-three-day 
chore,”  he  says.  “If  you’ve  lived  in  Windows  a  long  time,  you  get 
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conrmand-hne  junky”  who  compiled  bis  own  Liruix  kernels  and 
preferred  open  source  to  commercial  tools  to  grow  his  skill  set. 
Nonetheless,  after  six  months  on  the  job,  the  employee  was  still 

1&1  DUAL  HOSTING 


becoming  bmiliar  with  the  types  of  alerts  coming  through  and 
learning  how  to  respond  to  them.  “Because  some  alerts  only 
show  up  every  few  months,  it  might  be  a  year  before  he  realizes 


Setting  the  Stage 

Meanwhile,  Weddle  says  not  all  employees  are  up  to  the  task  of 
learning  open-source  skills.  “It’s  heavily  peisonaUty-dependent,” 
he  says.  “If  you  have  someone  antagonistic  to  the  open-source 
idea,  they'll  be  hard  to  train.  But  if  they’re  open-minded  or  dabUed 
in  both  opeirsource  aixl  commercial  technokigies,  it’s  quite  easy." 

A  case  in  point  was  when  his  company  first  nroved  to  open 
source.  On  his  three-person  staff,  one  employee  blossomed 
during  the  migration,  while  another  was  Iks  enthusiastic.  “He 
began  to  pick  up  on  it,  but  another  opportunity  came  up  and 
he  jumped  ship,”  Weddle  says.  “There  are  these  odd  religious 
wars.  If  someone  is  entrenched,  they’re  just  not  goirjg  to  change. 
But  most  firlks  ate  in  the  middle,  and  it’s  not  that  b^  a  deal  to 
get  someone  to  switch.  Many  revel  in  it  —  they’ve  never  had  a 
chaiK*  to  play  with  this  hefirre,  and  they  go  for  it.” 

David  O’Berry,  director  of  IT  systems  and  services  at  the 
South  Carolina  Department  of  Probation,  Parole  and  Pardon 
Services,  agrees  that  it’s  the  team  itself  that  dictates  the  ease  of 
the  transition.  “A  strong  development  staff  can  absorb  arrything,” 
he  says.  In  his  experience,  training  on  open  source  is  no  di&rent 


Mitre  Corp.,  CIO  Joel  Jacobs  says  the  public-intetest  not-for- 
profit’s  success  with  open  source  is  very  much  tied  into  its  in-  . 
vestment  in  development  skills  over  the  past  five  years  and  its 
emphasis  on  continual  innovation.  Mitre’s  main  opeu-source 
initiative  is  its  Linux-based  intranet  portal,  developed  over  the 
past  rS  months  and  now  used  by  more  than  7,000  employees. 

For  the  past  few  years,  Bedford,  Mass.-based  Mitre  has  been 
working  to  make  sure  it  has  the  right  skills  in-house  to  do 
mote  custom  development  so  it  doesn’t  have  to  rely  on  com¬ 
mercial  systems.  “For  some  people,  that  was  an  easy  transfor¬ 
mation,  while  for  others,  it  wasn’t  the  right  environment,  "and 
they  have  moved  on  to  mote  suitable  qrportunities,”  says  Bill 
Donaldson,  head  of  a{q>lications  development. 

It’s  not  always  easy  to  find  the  right  staffers,  say  Donaldson 
and  Jacobs.  “We’re  seeit^  difficulty  hiring  across  the  board,”  tar 
both  custom  code  and  open  source,  Jacobs  says.  However,  the  fact 
that  Mitre  offers  opportunities  to  work  with  open  soitrce  makes 
it  mote  attractive  to  job  hunters,  he  believes.  Additionally,  Mitre’s 
effirrts  to  create  an  engaged  workforce  that  is  working  on  thir^ 
that  matter  to  them  makes  it  easier  to  recruit  and  train  internally. 

shouldn’t  discourage  companies  from  migrating  to  or  expanding 
their  use  of  open  source.  “Although  we  pay  more  for  the  troops, 
the  lower  costs  and  the  lack  of  hassle  when  I  want  to  change 
something  makes  all  the  difference,”  Weddle  says.  “When  new 
business  requirements  come  barrelirig  down,  it’s  so  rnitch  easier 
to  respond  with  the  operr-source  stack.”  ♦ 

Brandd  is  a  Computerwotld  contributir^  writer  Vou  can 
contact  her  at  marybrandel@venzon.net. 
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SPOTLIGHT  I  OPEN  SOURCE 


OPEN 

SOURCE 


N  2006,  A  BRANCH  OF  THE  U.S.  ARMED  SERVICES  wanted 
to  know  just  how  prevalent  open-source  software  had 
become  in  its  IT  ranks. 

The  IT  staffers  knew  that  Linux  and  a  few  other  open- 
source  infrastructure  apps  were  being  used  in  “a  couple  of 
divisions,”  but  they  wanted  to  get  a  full  understanding  of 
that  usage  and  then  estimate  the  ROI  to  determine  whether 
open  source  should  be  rolled  out  to  other  divisions.  Consultants 

Continued  on  page  28 


UNCHECKED 


As  open-source  use  runs  rampant,  IT  must  get  a  grip  on  governance 

and  figure  out  if  it’s  really  saving  money,  by  stacy  collett 


26  computerworld  may  9, 


Working  together  to  make  Windows  and  Linux  work  better  for  you. 

To  learn  more  about  our  partnership,  please  visit  us  online  at  moreinterop.com 


Novell.  Mmsoft’ 


I  of  300%  10  700%.  But  the  military  branch  still  had  no 
ant  e  plan  over  the  use  of  open-source  u*chnolog>  .  Need- 
say.  “they  have  one  no>v"  says  Andrew  Aitken.  a  senior 
esklem  at  Palo  Alto,  Calif.-based  Olliame.  which  was 
kI  by  Black  Duck  Software  in  2010. 

tliferation  of  open-source  applications,  and  with  vendors 
y  from  licensed  models  to  software-as-a-service  mtxlels. 
Hjrce  is  in  a  state  of  rapid  maturation.  What's  more,  “in 
large  distributed  environments,  [companies}  do  lots  of 
wn  developing  across  the  globe,  and  they  outsource  a  lot 
lopment,  so  the>  really  don’t  know  what  their  partners 


Hidden  Costs,  Hidden  Value 

Wlienever  an  organization  adopts  a  new  tec’hnology.  there’s 
always  a  leap  of  faith  that  it's  going  to  be  cheaper,  better  and  mo 
secure.  “Then  it  invariably  gets  justified  backwards,"  says  Steph« 
Walli,  technical  director  at  Outercurve  Foundation,  a  nonprof 

their  participation  in  open-source  development  projects. 

Calculating  ROI  can  be  easy  if  you  buy  an  open-source  packa] 
like  Red  Hat  Linux.  But  in  practice,  it’s  more  difficult  because 
there  are  so  many  open-source  apps  and  so  _  1 

“People  are  learning  that  there  are  other  benefits,”  such  as  risk 
reduction  or  the  ability  to  build  a  website  without  creating  cod 
Continued  on  page 


Most  of  [our  clients]  aren’t  measuring  or  don’t  care.  It’s  simply  not  in  their 
lexicon  to  look  at  open  source  from  an  ROI  perspective. 
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Continued  from  page  26 

frcmi  OUiance  Group  took  a  look  at  the  service's  operations 
and  after  three  days  came  back  with  some  shocking  news:  The 
military  branch  was  already  using  Linux  and  other  open-source 
applications  in  75%  of  its  divisions,  and  in  half  of  those,  open- 
source  use  had  already  reached  missioncritical  status. 

Though  the  open-source  train  had  1^  the  station  without  IT 
managem«it  onboard,  the  consulting  firm  was  able  to  deter¬ 
mine  that  the  various  divisions  using  open  source  were  seeing 
an  ROI  of  300%  to  700%.  But  the  military  Inanch  still  had  no 
governance  plan  over  the  use  of  open-source  technology.  Need¬ 
less  to  say,  “they  have  one  now”  says  Andrew  Aitken,  a  senior 
vice  president  at  Palo  Alto,  Calif.-based  Olliance,  which  was 
acquired  by  Black  Duck  Software  in  2010. 

It’s  happening  in  the  commercial  world,  too.  he  says.  With 
the  i^liferation  of  c^n-source  api^ications.  and  with  vendors 
moving  from  licensed  models  to  software-as-a-service  models, 
open  source  is  in  a  state  of  rapid  maturation.  What  s  more,  “in 
today’s  large  distributed  environments,  [companies]  do  lots  of 
thdr  own  developing  across  the  globe,  and  t^  outsource  a  lot 
of  development,  so  they  really  don’t  know  what  their  partners 


may  be  using.  So  it’s  taking  a  while 
to  develop  the  critical  mass  to  get 
the  attention  of  pec^le  who  have 
the  knowledge,  experience  and  re¬ 
sponsibility  to  develop  RO!  and  TCO 
models-,”  Aitken  adds. 

So  it  comes  as  no  surprise  that 
42%  of  130  open-source  users  re¬ 
sponding  to  a  recent  Computerwodd 
survey  reported  that  they  aren’t 
measuring  the  return  on  investment 
or  total  cost  of  ownership  of  their 
open-source  projects,  and  19%  said 
they  don’t  know  if  they’re  measuring 
those  things.  And  more  than  two- 
thirds  don’t  have  a  written  gover- 
nan<%  plan  (see  charts  at  left). 

“In  many  cases,  open-source  users 
are  basing  their  entire  assumption 
for  TCO  on  acquisition  costs,”  says 
Mark  Driver,  an  analyst  at  Gartner. 
“They  assumed  that  in  the  long  run, 
it  will  be  cbeq)er,”  but  they  don’t 
take  into  consideration  hardware 
costs,  training,  consulting  needs  and 
the  ramifications  of  downtime  if  a 
system  fails. 

“Most  of  [our  clients]  aren’t 
measuring  or  don’t  care,"  Aitken 
says.  “It’s  simply  not  in  their  lexicon 
to  look  at  open  source  from  an  ROI  perspective.”  They  are  more 
focused  on  creating  business  value  than  on  saving  IT  dollars. 

But  others  say  companies  can’t  be  sure  they’re  creating  busi¬ 
ness  value  without  running  the  numbers  first,  and  having  a  gov¬ 
ernance  plan  is  one  of  the  best  ways  to  get  a  grip  on  open-source 
costs  —  and  keep  the  company  from  unwittingly  getting  tied  up 
in  legal  battles  over  the  use  of  [roprietary  software. 

Hidden  Costs,  Hidden  Value 

Whenever  an  organization  adopts  a  new  technology,  there’s 
always  a  leap  of  kdth  that  it’s  going  to  be  cheaper,  better  and  mcne 
secure.  “Then  it  invariably  gets  justified  backwards,"  says  Stephen 
Walli,  technical  director  at  Outeicurve  Foundation,  a  nonprofit 
organization  that  works  with  commercial  companies  to  facilitate 
their  participation  in  open-source  development  projects. 

Calculating  ROI  can  be  easy  if  you  buy  an  opeir-source  package 
like  Red  Hat  Linux.  But  in  practice,  it’s  more  difiScult  because 
there  are  so  many  open-source  apps  and  so  many  usage  modek. 
“People  are  learning  that  there  ate  other  benefits,”  such  as  risk 

Continued  on  pege  30 


Most  of  [our  clients]  aren't  measuring  or  don't  care.  It’s  simply  not  in  their 
lexicon  to  look  at  open  source  from  an  ROI  perspective. 

ANDREW  AITKEN.  SENIOR  VICE  PRESIDENT,  OLLIANCE  GROUP 
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BrisR 


NOW  AVAILABLE 


Radical  Simplicity.  Rock-Solid  Reliability. 


By  marrying  the  power  of  Apache  Cassandra”  to 
Hadoop,  DataStax  has  created  Brisk,  a  powerful 
Hadoop  distribution  that  accelerates  the  time  between 
data  creation  and  2inalysis. 

It’s  the  simpler  to  deploy,  easier  to  use  Hadoop. 


DataStax 


Apacha,  Apache  Cassandra,  Cassandra,  Apache  Hadoop  and  Hadoop  are  trademarks  of 


www.DataStax.com/Brisk 


SPOTLIGHT  I  OPEN  SOURCE 


fa»m  scratch  or  buying  an  expensive  devel 
upmeni  tot)!.  Walli  sav-s. 

The  ROl  argument  that  “open  stnirce  is 
cheaper*  is  losing  relevance,  in  part  becau 

quality,  reliability  arKi  security  as  reasons 
lor  switching  to  open  source,  according  to 
ioio  study  b>Accenlure. 

-It  s  easy  to  say  that  [open  source] 

Tomas  Nystrom.  a  wnior  director  at  Ac¬ 
centure  who's  responsible  for  open  source. 

He  advises  a>mpanies  to  consider  the 

entire  life-c)’cle  cost  of  using  open  source.  _ 

and  assessing  the  long  term  impact  on  the  help  desk,  not  just 
calculating  the  cost  of  equipment  and  staff,  for  example. 

Other  hidden  expenses  could  include  tl)e  costs  of  handling 
quality  assurance  and  regression  testing  in- 


It's  easy  to  say  that 
[open  source]  will 
create  value,  but  it’s 
very  important  to  be 

systematic  on  how 
you  create  value, 

to  ensure  that  you're 
actually  doing  it. 


Governance  means  different  thing 


those  who  make  it.  “Once  you  identify 
which  bticket  [youre  in),  it  allow.s  you  to 
build  a  governance  process  that  really 
spcMks  to  those  three  different  functions," 


Buying  open  soi 
other  softw'are  for 
pariofthegovcrni 


e  is  like  buying  any 
organization.  As 
:e  plan,  IT  managers 


ing 


nance,  and  the  potential  cost  of  buying  another  system  if  the 
open-source  software  doesn't  do  what  you  need  it  to  do. 

Many  CIOs  itKK>se  to  avoid  ROI  questions  by  focusing  on  value 
createtf  for  the  business  rather  tlian  IT  cxwt  savings.  Walli  sa)*s. 
CalniUting  ROI  and  TCO  “is  really  hard  to  do.”  he  says.  “But  it's 
often  fairly  easy  to  demonstrate  that  “once  this  system  was  put  in 
place,  wc  were  adding  this  amount  of  business  to  the  corporation.'  ' 

Governance  Required 

Why  is  governance  so  important?  Ask  Barnes  &  Noble.  In 
March.  B&N  gt>t  caught  in  a  patent  infringement  suit  between 
Microsoft  and  the  developers  of  Android.  Microsoft  Bled  suit 

. ming  that  B&N  s  Nook  Color  Tablet 

ntained  Microsoft  intellectual  prop- 
urce  mobile  operating  system. 


to  open-source  offerings,  with  a  list  of 
approved  products  for  purchase,  product 
numbers  and  downloads. 

_  Using  open  sourc'e  means  download¬ 
ing  software  without  buying  services  or 
support  from  a  vendor.  “If  you’re  just  downloading  [the  open- 
source  content  management  system)  Alfresco  —  for  example,  tfie 
lomnmnity  wlition  —  with  your  own  knowledge  base,  then  the 
skill  sets  yt)u  need  are  very  different.  You  start  allowing  people 
to  demonstrate  what  they  have  leariKKl  in-house,"  Walli  says. 

The  governance  plan  should  identify  empkiyees  who  are 
willing  to  help  support  the  product  inside  the  company  and  slay 

riiy  patches  or  deal  with  other  issues  that  may  arise.  The  plan 
.should  also  specify  the  downloadable  binaries  tlut  the  employee 
is  willing  to  support. 

Developers  olten  use  pieces  of  open-source  software  as  build¬ 
ing  blocks  when  they  create  applications  (as  in  the  Barnes  & 
Noble  case).  "That's  where  you  start  caring  about  licenses  and 

things  they  need  to  consider”  in  the  governance  plan,  says  Walli. 

policies  and  not  let  the  legal  team  decide  them,  proponents  say' 
Develq)ers  need  to  help  attorneys  understand  the  ec-onomic  mo¬ 
tivation  for  using  open  source  and  “get  thtrni  away  from  the  con- 


ROI  vs.  TCO 


■  Total  cost  of  ownership  (TCO) 


compares  using  open  source  to  a  lawyer  writing  a  contract.  The 

Do  ROI  and  TCO  need  to  be  determined  before  a  governance 
plan  Is  set  up.  or  will  a  governance  plan  lead  to  belter  ROI  and 
TCO?  It's  a  chicken-and-egg  problem,  Walli  explains.  “Gover- 


opporttinity.  “It's  fine  if  you  react  to  potential  risk,  but  the 

sotme  is  inevitable  across  the  entire  techiKilog)’  ecosystem  ” 
Aitken  says.  “You  can't  afford  to  be  an  ostrich.”  ♦ 
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Continued  fmm  page  2S 
from  scratch  or  buying  an  expensive  devel¬ 
opment  tool,  Walli  says. 

The  ROl  argument  that  "open  source  is 
cheaper"  is  losing  relevance,  in  part  because 
mote  and  more  companies  are  dtis^ 
quality,  reliability  arid  security  as  reasons 
^  switching  to  open  source,  according  to  a 
2010  study  by  Accenture. 

“It’s  easy  to  say  that  (open  source]  will 
create  value,  but  it’s  very  important  to  be 
systematic  on  how  you  create  value,  to 
ensure  that  you’re  actually  doing  it,"  says 
Tomas  Nystrom,  a  senior  director  at  Ac¬ 
centure  who’s  responsible  for  open  source. 

He  advises  companies  to  consider  the 
entire  life-cycle  cost  of  using  open  source. 

That  means  estimating  training  expenses 
and  assessing  the  long-term  impact  on  the  help  desk,  not  just 
calculating  the  cost  of  equipment  and  staff,  for  example. 

Other  hidden  expenses  could  include  the  costs  of  handling 
quality  assurance  and  regression  testing  in-house,  the  creeping 
costs  you  incur  if  you  end  up  doing  a  lot  of  software  mainte¬ 
nance,  and  the  potential  cost  of  buying  another  system  if  the 

Many  aOs  choose  to  avoid  ROI  questions  by  focusing  on  value 
created  for  the  business  rather  than  IT  cost  savings,  Walli  says. 
Calculating  ROI  and  TCO  “is  really  hard  to  do,"  he  says.  “But  it’s 
often  fairly  easy  to  demonstrate  that  ’once  this  system  was  put  in 
place,  we  were  adding  this  amount  of  business  to  the  corporation.’” 

Governance  Required 

Why  is  governance  so  important?  Ask  Barnes  &  Noble.  In 
March,  B&N  got  caught  in  a  patent  infringement  suit  between 
Microsoft  and  the  developers  of  AndroirL  Microsoft  hied  suit 
against  Barnes  &  Noble,  daiming  that  B&N’s  Nook  Color  Tablet 
device  and  Nook  e-reader  contained  Microsoft  intellectual  prop¬ 
erty  found  in  the  Android  open-source  mobile  operating  system. 


GovemaiKe  means  different  things  to 
different  open-source  users.  Walli  puts 
open-source  players  into  three  categories: 
ttose  who  buy  it,  those  who  use  it  and 
those  who  make  it.  “Once  you  identify 
which  bucket  [you’re  in],  it  allows  you  to 
build  a  governance  process  that  really 
speaks  to  those  three  diftrent  functions,” 

Buying  open  source  is  like  buying  any 
other  software  for  an  organization.  As 
part  of  the  governance  plan,  IT  managers 
can  set  up  an  internal  website  dedicated 
to  open-source  offerings,  with  a  list  of 
approved  products  for  purchase,  product 
numbers  and  downloads. 

Using  open  source  means  download¬ 
ing  software  without  buying  services  or 
support  from  a  vendor.  “If  you’re  just  downloading  [the  open- 
source  content  management  system]  Alfresco  —  for  exan^,  the 
community  edition  —  with  your  own  knowledge  base,  then  the 
skill  sets  you  need  are  very  different.  You  start  allowing  people 
to  demonstrate  what  they  have  learned  in-house.”  Walli  says. 

'The  governance  plan  should  identify  employees  who  are 
willing  to  help  support  the  product  inside  the  company  and  stay 
current  with  the  community  so  they  know  when  to  apply  secu¬ 
rity  patches  or  deal  with  other  issues  that  may  arise.  The  plan 
should  also  specify  the  downloadable  binaries  that  the  employee 
is  willing  to  support. 

Developers  often  use  pieces  of  open-source  software  as  build¬ 
ing  blocks  when  they  create  applications  (as  in  the  Barnes  & 
Noble  case).  “That’s  where  you  start  caring  about  licenses  and 
have  discussions  with  internal  counsel  and  explain  to  them 
things  they  need  to  consider”  in  the  governance  plan,  says  Walli. 

The  IT  organization  needs  to  maintain  control  of  open-source 
policies  and  not  let  fhe  legal  team  decide  them,  proponents  say. 
Developers  need  to  help  attorneys  urrderstand  the  economic  mo¬ 
tivation  for  using  open  source  and  “get  them  away  from  the  con- 


It’s  easy  to  say  that 
[open  source]  will 
create  value,  but  it’s 
very  important  to  be 

systematic  on  how 
you  create  valuoy 

to  ensure  that  you’re 
actually  doing  it. 

T0MA5  NV5TR0M.  SENIOR  DIRECTOR. 
ACCENTURE 


LOOK  INSIDE  THE  CLOUD. 


ITS  ALL  ABOUT  THE 

DATA 

What  could  be  bigger  than  cloud  computing?  Look  inside  the  cloud  and  you  will  see.  It's  all  about  data. 
Big  data.  Big  data  that  is  not  only  big  in  size  but  big  in  significance  and  impact.  Data  is  the  lifeblood 
and  opportunity  of  today’s  enterprise  and  that  is  where  your  future  begins...and  ends.  Learn  more  about 
your  path  to  competitive  advantage  at  the  intersection  of  big  data  and  cloud  computing  by  visiting: 
www.greenplum.com/lookinside 
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Tools 

mmJo  Ease  IT’s 

Pam 

Four  startups  offer  fresh  ideas  for  reducing 
enterprise  IT  headaches,  bysandragittlen 


I 


IT  tools  and  technologies 
you’ll  be  using  in  a  few 
years,  it  pays  to  keep  an  eye 
on  startups  that  are  focused 


Venture  capitalists  and 
entrepreneurs  agree  that  the 
IT  startups  that  get  funding 
these  days  are  those  whose 


headaches  and  generally  make  CIOs’  lives 
easier  —  without  capital  investments  in 
software  and  supporting  infrastructure. 
Investors  are  backing  startups  that  aim  to 
do  just  that  with  systems  that  handle  tasks 
like  IT  resource  tracking,  cloud  storage,  vir¬ 
tualization  and  mobile  device  management. 

Here  are  snapshots  of  four  startups  that 
are  bringing  hassle-saving  IT  products 
and  services  to  the  enterprise.  Even  if  you 
don’t  end  up  using  these  specific  products, 
chances  are  you’ll  check  out  something 
similar  within  the  next  year  or  so. 


Think 


and 


cloud  1 

are  incompatible? 

Think  again 


httpy/wso2.com 


http7'/wso2,org 
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Cloud  Backup  for 
*  ■  Web  Apps:  Backupify 


1  Cloud-Based  IT  Resource 
Tracking:  Apptio 

Fo- 1  he  past  few  years,  IT  has  been 

a  service  provider  for  the  enterprise 
instead  of  being  a  cost  center.  This 
means  tracking  business  units'  usage 
of  IT  resources,  iircluding  labor,  hardware,  software, 
power  and  cooling. 

CIOs  and  other  IT  man¬ 
agers  often  develop  bills  of 
services  using  a  combina- 


Pricing:  Star  f,  at  SIOO.OOO 
annually,  depending  on  the 
nn.nber  ot  users  and  modules 

Funded  by:  Andreessen 
Horowil2.  Cisco  Systems.  Greylock 
Partners.  Madrona  Venture  Group 
and  Shasta  Ventures 


aspects  of  IT  —  such  as  the 
network,  bandwidth  and 
mobile  devices  —  but  not 
as  a  holistic  view,"  be  says. 

Apptio’s  Technology  Business  Management  (TBM) 

and  corporate  executives  a  consolidated  look  at  all  IT 
investments  and  thdr  associated  costs,  showing  the 
finanfial  impact  ctf  client,  infrastructure  and  applica* 
tion  services,  says  Gt^a.  Authcnized  usm  can  input 
data,  run  reports,  view  data  via  customized  dash- 
boards,  or  di^tcb  alerts  based  on  predefined  thresh- 
olds,  such  as  a  business  unit's  storage  usage  level. 

IT  also  can  create  a  “bill  of  rr  for  each  business 
unit  to  show  its  exact  service  ccmsumptioiL  GupU  says 
this  is  critical  Iot  forecasting,  alining  budgets  and 
developu^  an  accurate  chargeback  program. 

For  instance,  using  TBM,  a  company  might  realize 
that  employees  are  using  lo  applications  that  perform 
similar  fuiKtitms.  By  standardizing  on  one,  it  could 
gain  s^nificant  cost  efficiencies  in  the  form  of 
vohime  prkii^  and  streamlined  support.  Also.  TBM 
ofiers  what'if  scenarios  so  organizations  can  weigh 


cloud  or  increasing  the  use  of  telepresence  systems. 

GupU  says  that  the  Starbucks  cofee  chain  started 
usii^  TBM  and  discovered  that  the  laptops  it  had  de¬ 
ployed  to  cut  desktop  exp^ises  were  actually  costing 
it  more  because  l^ery  replacements  and  support 
issues.  Armed  with  this  information,  the  company 


applications,  they  are  responsible  to  make  sure  that 
the  application  arKl  dau  are  available,  which  includes 
emf^oying  backup/recovery  took  and  other  h^i-avail- 
ability  techndogies.  Now  that  more  organizaticms  are 
outsourcing  applications,  the  issue  of  downtime  and 
daU  loss  is  getting  exposed,"  she  says. 

This  is  particularly  a  concern  because  many 


Pricing:  Starts  at  $19.99  per  month 
for  10  users;  additional  users  are  S3  pei 
month  each,  includes  both  a  social  media 
account  backup  module  and  Google  Apps 
domain  backup. 

Funded  by:  Avalon  vemures,  First 
Round  Capital,  General  Catalyst. 
Lowercase  Capital.  Betaworks  and  several 
individual  invcsiors 
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Free  your  workforce.  Control  what  matters. 

vmiuAL 


Work  anywhere.  On  any  device.  We  call  that  virtual -computing. 

And  it’s  driven  by  virtualization  technologies  that  give  you  both 


CiTR|X 


Citrlx  coni/SimplicItylsPower 


Virtualization:  Delphix 

One  task  that  can  consume  a  lot 
of  IT’s  time,  not  to  mention  data 
re,  is  database 


Indonesia.  “Say  you  were  traveling  abroad  and  lost 
your  phone.  You  could  go  to  an  Internet  cafe,  log  in 
to  your  Track  and  Protect  Web  page,  and  locate  it  or 
secure  the  data,”  Harmsen  says. 

“Hosted  mobile  device  management  may  offer  an  ad¬ 
vantage  when  the  hosted  service  can  be  accessed  from 
the  same  public  networks  as  these  mobile  devices,” 
says  Crawford.  “This  potentially  improves  the  ability 
to  reach  and  manage  these  devices  wherever  found.” 

4 

H  cloning.  Test  and  development, 

I  data  warehousing,  and  support 

teams,  among  others,  request  copies  of  pr^uction 
databases  on  a  regular  basis.  Each  time,  IT  must 
provision  server  and  storage  resources  to  house  all 
those  database  copies. 

Moreover,  the  data  becomes  stale  almost  as  soon 
as  it  is  duplicated,  and  it  can  be  difficult  for  IT  to 
track  the  different  versions  in  existence  to  delete 
them  and  reabsorb  the  underlying  resources. 

SUrtup  Delphix  has  developed  Delphix  Server 
to  virtualize  databases.  Essentially,  the  software 
creates  full  read/write  clones  of  Oracle  lo  and  ii 
production  databases.  These  clones  are  automati¬ 
cally  generated  from  abstracted  snapshots  and  log 
files,  and  they  require  a  tenth  of  the  storage  space 
that  physical  databases  need,  according  to  Karthik 
Rau,  vice  president  of  products  and  marketing. 

The  virtual  database  regulaily  syncs  with  the 
production  database;  only  changed  data  is  sent  to  the 
virtual  database,  reducing  the  infrastructure  woridoad. 

Overall,  Delate  aims  to  consolidate  data  center  re- 


and  upgrade  cycles. 

In  addition,  Delphix’s 
secure  self-service  portal 
lets  IT  set  policies  and 
allot  storage  so  users 
can  fulfill  their  own 
requests.  For  instance, 
if  a  developer  needs  a 
copy  of  the  company’s 
ERP  database,  he  can 
provision  it  himself.  This 


to  the  freshest  data,  and 

when  his  project  is  complete,  the  virtual  database 
can  be  deleted  and  the  resources  reabsorbed. 

Rau  says  that,  perhaps  most  important,  Delphix 
Server  ensures  the  accuracy  of  dau  and  reduces  pro¬ 
duction  environment  risks,  since  users  can  create  and 
recover  the  virtual  databases  frcnn  any  pmnt  in  time. 
Usir^  “true”  replicas  of  the  databases  increases  the 
quality  and  stability  of  the  application  in  production. 

“Since  creating  virtual  databases  requires  ik> 
additional  storage  capacity  and  is  fully  automated 
through  Delphix  Server,  developers  can  spin  up 
virtual  databases  on  the  fly  and  create  significantly 
more  database  environments  with  little  to  no  ad¬ 
ditional  infrastructure  investment,  "  Rau  says. 

GUI's  Gibbs  says  the  ability  to  virtualize  databases 
is  valuable  for  IT  organizations.  “For*a  large  database 
like  Oracle,  being  able  to  just  click  and  spin  up 
atK>ther  version  reduces  the  drag  on  IT  and  would  let 
developers  get  on  with  their  jobs  quickly."'  ♦ 

Gitticn  is  a  /Glance  technology  writer  in  the  Boston  area. 


The  world’s  foremost  virtual  oomputing  conferenoe. 
Be  there,  physioally. 
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Indonesia.  “Say  you  were  traveling  abroad  and  lost 
your  phone.  You  could  go  to  an  Internet  cafe,  log  in 
to  your  Track  and  Protect  Wd?  P‘tge.  and  ItK  ale  it  or 
secure  the  data."  Harmst*n  says. 

"HosU'd  nK^jile  device  management  may  oHer  an  lUl- 
vantage  when  the  IkjsIwI  stTvke  can  be  accessitl  frottt 
the  same  public  itetworks  as  tlH*se  mobile  de\  ices." 

to  reacli  arid  manage  iIk'sc*  devici-s  wherever  f«Htnd." 

A  Database 

JM  virtualization:  Oelphix 

I  One  task  that  can  consume  a  lot 

H  of  ITs  liiiKMHrt  to  mention  data 

center  infrastructure,  database 

H  clonitig.  Tc^t  and  development. 

I  data  warehousing,  and  Mip|)oi  t 

teams,  among  others,  request  copies  of  pr<Klutlk»n 
database's  on  a  rc'gular  Itasis.  bach  time.  IT  must 
j)rov  ision  server  and  storage  resotirces  to  house  ail 
those  database  copies. 

.  .Morenner.  the  data  In'ctimes  stale  alitjost  as  stxiii 
as  it  is  duplicated,  and  it  can  1k‘  difiicuit  for  1 1  to 
track  tlie  different  versions  in  existence  to  delete 
tlKMii  and  reabstirb  the  underlv  ing  resources. 

Startup  Delpliix  has  developed  Delphiv  Sc*rvei 
to  V  irtuali/e  databases,  bssentially.  the  s»)ftware 
creates  full  read/w  rite  ck»nes  of  Oracle  to  and  ii 
[mKluction  databases.  These*  cloni*s  are  automati 
callygeneratcxl  Irfnn^abstractcxl  snapshots  and  log 
Hies,  and  they  require  a  tc*ruh  <»f  the  storage  space 
that  physical  databases  need,  according  to  Kartink 
Rau.  vice  presidettt  of  pnKlucts  and  marketing. 

The  virtual  datalxise  regularly  syncs  with  the 
pnKfuction  datal)ase:  »nilv  dungcxl  data  is  wnt  to  the 
V  irtual  datalxise*.  rexlucing  the  infrastructure  vvorkKcul. 

Overall.  Dc'lphix  aims  to  consolidate  data  eentei  re 
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Powerful 

Experiments 


Solar  arrays,  gas  turbines  and  fuel 
cells  are  among  the  innovative  options  for 
powering  data  centers.  By  John  Brandon 


part  of  a  data  center  redesign,  the  agency  spent  about  $600,000 
on  a  30-paneI  solar  array,  invested  in  virtualization  technology 
for  server  and  storage  systems,  and  bought  new  pods  that  pull  hot 
air  out  and  help  cool  equipment  inside  the  racks. 

The  NCTD  sells  solar-generated  power  back  to  the  local  utility  to 
earn  credits  on  AC  power  usage  (which  is  allowed  under  California 
law),  meaning  the  solar  initiative  has  become  a  profit  center.  The 
solar  panels  don’t  generate  power  for  the  building  directly. 

It  works  like  this;  The  local  utility  sells  AC  power  to  the  NCTD, 
then  the  agency  sells  the  utility  the  solar  energy  for  a  too%  credit. 
The  agency  has  a  five-year  plan  in  place  to  ofeet  all  AC  power  in 
its  data  center.  The  NCTD  generates  up  to  450  kilowatt-hours  of 
electricity,  and  it  plans  to  reach  r  megawatt-hour  in  five  years. 

“Solar  is  what  has  made  the  [data  center  redesign]  project  even 
have  an  ROI,”  says  Miller. 

Bob  Mobach,  a  consultant  at  systems  integrator  Logicalis 

Continued  on  pqge  40 
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Group,  helped  the  NCTD  redesign  its  data 
center.  He  says  a  key  to  realizing  an  ROl  with 
alternative  power  is  embracing  virtualization. 

The  agency  s  dau  center  is  about  80%  virtual¬ 

ized,  and  that's  a  primary  reason  why  the  solar 
arrays  are  such  a  success  power  source. 

"Virtualization  was  critical  for  so  many 
reasons,"  says  Miller,  noting  that  the  new 

setup  is  “way  more  efficient,”  makes  better 

use  of  hardware,  gives  the  dau  center  a 
smaller  footprint  and  is  easier  to  manage  with 

fewer  people.  “My  actual  physical  footprint 

went  ^m  not  having  any  more  slots  in  the 

racks  available  to  having  only  half  of  the  racks 
occupied,  and  yet  we've  increased  our  applica- 
tions  this  year,"  she  says. 

Analysts  laud  effixts  like  the  NCTD's  but 
warn  that  solar  power  isn't  right  for  every  dau  o 
of  efficiency  you  can  get  out  of  solar  eneigy  is  dictated  by  the 
location  of  the  dau  center,”  says  Forrester  Research  analyst  Doug 
Washburn.  “If  you  are  in  an  area  where  the  sun  shines  more  fre¬ 
quently,  you  can  take  advantage  of  a  solar  investment." 

One  reason  why  solar  may  not  be  the  best  daU  center  power 
source  is  the  foct  that  dau  centers  use  10  to  too  tunes  more  eneigy 
per  square  foot  than  a  typical  office  complex,  Washburn  says.  Mote- 
over,  resiliency  and  uptime  are  so  crucial  to  a  daU  center's  operation 
that  “it's  a  critical  risk,  and  maybe  even  foolhardy  to  think  you 
could  power  the  majority  of  your  dau  center  from  solar,”  he  adds. 

solar  project.  Increasing  the  number  of  hosts  per  machine,  con¬ 
solidating  stouge  and  decommissioning  equipment  that  has  been 
virtualized  can  make  a  data  center  more  efficient  even  before  an 
energy  switch-over,  he  says. 

Power  From  Jet  Engines 

Christopher  Sedore,  the  CIO  at  Syracuse  University,  says  the 
upsUte  New  York  school  spent  about  $12  million  to  build  a  data 


s  are  essentially  jet  ei^nes  that  run  on  natural 
gas  and  provide  poy^r  to  generators.  The  turbines  produce 
about  a  half  a  megawatt  of  power  for  the  university’s  data  center 
and  another  200  kilowatts  for  other  uses,  such  as  powering  an 
adjacent  building. 

The  turbines  enable  the  university  to  have  a  cO"genetatk)n  setup, 
meaning  they  can  bdp  generate  both  heat  aixi  power  for  the  data 
center  or  nearby  buildings.  The  university  can  also  sell  any  extra 
power  the  turbines  generate  back  to  the  local  power  company. 

The  turbines  drive  two  150-100  absorption  chillers  that  turn  the 
heat  exhaust  from  the  turbines  into  chilled  water  that  cools  the 


»  CIO  ANCELAMILLEK  says 
virtuallxation  was  critical  to  the 
success  of  NCTD*s  solar  profect 


data  center.  In  the  winter,  the  univer^  uses 
odd  outride  air  for  data  center  cooling,  and 
hot  water  generated  by  the  turbines  is  used  to 
heat  an  ac^acent  building. 

Banking  on  Fuel  Cells 

One  of  the  most  promising  new  technologies 
for  powering  data  centers  is  the  hydrogen 
fuel  cell.  Hydrogen  fuel  cells  don't  produce 
any  harmful  emissions,  so  companies  such 
as  Verizon,  Whole  Foods  and  Goo^  have 
adopted  them  as  an  alternative  power  source 
for  office  or  retail  space. 

Few  oiganizations  use  fuel  cells  to  power 
data  centers,  because  they  are  expensive. 

But  First  National  Bank  of  Omaha  built  a 
200,ooo-square-foot  fuel-cell-powered  dau 
center  in  1999  because  such  systems  tend  to 
be  especially  reliable.  The  daU  center  is  about  the  size  of  a  foot¬ 
ball  field;  it's  surrounded  by  a  dry  moat  and  is  powered  entirely 
by  four  zoo-kilowatt  fuel-cell  generators.  If  the  daU  center  does 
lose  fuel  cell  power,  which  is  extremely  unlikely,  an  uninterrupt¬ 
ible  power  supply  can  carry  a  short-term  load. 

“With  the  fuel  cells,  we  have  seven-9s  of  reliability,  or  about  2 
or  3  seconds  of  downtime  pet  year,"  says  Brenda  Dooley,  presi¬ 
dent  of  First  National  Buildings,  a  bank  subsidiary  that  handles 


system  with  backup  batteries.  When  we'd  lose  power,  the  batten 
ies  just  wouldn't  be  there.  We  did  this  for  relial^ty.” 

Dooley  explains  that  the  credit  card  processing  that's  done  at 
the  daU  center  requires  high  reliability;  Just  one  hour  of  down¬ 
time  could  resuh  in  a  loss  of  as  much  as  $6  million. 

The  bank  knew  that  using  fuel  cells  would  be  expensive.  In 
Nebraska,  AC  eneigy  costs  only  about  5  cents  per  kilowatt-hour, 
whereas  electricity  fiom  fuel  cells  costs  about  12  cents  per  kilowatt- 
hour.  It  would  have  cost  $2.2  million  to  build  a  data  center  that 
used  AC  power;  using  fuel  cells  raised  the  price  tag  to  $3.4  millioa. 
Dooley  says  fuel  cells  are  worth  the  higher  price,  and  the  ROI  is 
excellent  because  the  bank  doesn't  suffor  lost  transactions. 

Of  course,  other  enterprises  might  not  be  willing  to  pay  such  a 
high  price  for  great  relia^ity.  “Fuel  cell  technology  is  not  these  in 
termsofvolumeandscaletosupponlargerdatacettters,"saysNem- 
ertes' Ritter.  “But  down  the  loa^  it  is  very  interesting  potentially  as  a 
backup  power  source.” 

Alternative  power  has  a  bri^t  future  for  data  centers.  Ritter 
says  there  may  be  no  other  option  in  the  coming  years,  if 
traditional-energy  prices  continue  to  soar.  Whether  it's  solar 
power,  gas  turbines,  fuel  cells  or  some  emerging  option  —  such 
as  harnessing  the  power  of  ocean  waves  —  it's  cleat  that  new 
energy  sources  will  play  a  role  in  the  data  centers  of  the  future.  « 
Brandon  is  a  former  IT  manager  who  now  writes  about  lechnoltgy. 


[^With  the  fuel  cells,  we  have  seven-9s  of  reliability,  or  about 

2  or  3  seconds  of  downtime  per  year. 

BRENDA  DOOLEY,  PRESIDENT.  FIRST  NATIONAL  BUILDINGS 
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home  page  from  12  cities 

Hallmark's  Fresh  Start  agf 

The  greeting  card  company  built  a  new,  faster  websKe  and  saw  a  it  at  about  15th  in 
30%  uptick  in  its  customer  conversion  rate.  By  Patrick  Thibodeau 


For  yONTHS,  Hallmark  Cards  had  been  building 
a  new  website  in  parallel  with  its  old  one.  Late 
one  nig^t  last  September,  Hallmark’s  onbne  team 
arrived  at  its  moment  of  truth:  the  switchover. 

Would  the  new  site  work?  Paul  Barker,  vice 
president  and  general  manager  of  Hallmark 
Digital,  which  manages  the  company’s  online 
presence,  wasn’t  sure. 

“We  were  all  standing  around  waiting  for  it  to  break,  waiting 
fm-  it  to  crash,  and  it  didn’t  —  it  was  a  teal  confidence  booster  for 
the  entire  organizatfon,”  Barker  says. 

But  be  still  had  concerns.  Would  conversion  rates,  or  sales,  be 
hurt?  The  project  was  a  complete  reorchitecture  and  platform  idiift. 

“We  expected  to  have  a  lower  conversion  rate  be«use  we 
thought,  with  a  new  site,  it  was  going  to  take  some  time  for 
people  to  get  used  to  it,”  Barker  says.  Instead,  Hallmark  reports 
that  its  conversion  rate  increased  by  30%. 

The  company  also  says  customers  experienced  a  370%  im¬ 
provement  in  site  response  time.  On  the  old  site,  “response  time 
would  erode  significantly  at  the  peak  times,"  Barker  says.  “That 
was  unacceptable.' 

The  improvement  began  when  Hallmark  hired  Sawis  as  its 
hosting  provider  and  Infosys,  an  India-based  service  provider,  as  its 
primary  application  developer.  Response  times  from  2009  to  2010 


Barker  says  that 
AkrtSite’s  fitidings  mirror 
Hallmark’s  data.  “We  feel  we  are  performing  very  welL”  he  says. 

Prior  to  the  switch-over.  Hallmark  was  addii%  a  growing  catalog 
of  features  that  included  a  loyalty  points  program,  address  books 
and  reminders  of  key  events  such  as  birthdays.  And  it  was  adding 
that  functionality  to  a  site  that  c^fered  more  than  5,000  products. 

The  additions  produced  a  complex  code  layer  that  hurt  perfor¬ 
mance  and  made  it  difikult  to  add  new  customer  features.  That’s 
why  Hallmark  decided  to  remake  its  site.  “This  gave  us  an  ability 
to  have  a  fresh  start,”  Barker  says. 

The  company  stopped  using  IBM’s  WebSphere  software  and 
switched  to  Microsofr’s  .Net,  because  Microsoft  offered  lower 
licensing  and  maintenance  costs. 

Barker  doesn’t  credit  any  single  change  with  the  conversion 
rate  increase.  For  example,  he  points  out  that  optimizing  search 
and  navigation  also  made  it  easier  for  customers  to  find  products. 

Khalid  Saleh,  co-founder  of  Invesp  Consulting,  which  helps 
companies  improve  their  conversion  rates,  says  it’s  hard  to  pin 
upticks  in  sales  on  improved  response  times,  but  when  the 
average  response  time  drops  from  12  seconds  to  5  seconds, 

“you  can  see  a  huge  uplift  in  customers”  —  and  conversion  rate 
increases  of  as  hi^  as  12%. 

Barker  says  the  experience  has  given  his  organization  “a  lot 
of  confidence  that  we  can  take  on  even  mote  —  whether  mote 
services,  products  or  fimctionality.”  ♦ 
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number  erf  people  or  fewer. 

A  separate  study  by  Metrics  Based 
Assessments,  also  rdeased  in  March, 
ex{dains  what’s  happening. 

MBA,  a  data  center  research  firm 
that  benchmarks  about  too  data  centers 
annually,  reported  that  in  2006,  the 
number  of  Linux  opiating  system 
images  suj^xnted  by  the  equivalent  (rf 
a  rii^e  full-time  systems  administiattw 
was  9.2,  but  by  2010  it  was  17.1,  an  86% 
increase.  Over  that  same  period,  the 
number  of  Windows  images  stq>ported 
by  a  single  fulkime  stafiler  inci^ised 
61%,  and  the  number  of  Unix  images  per 
staflfer  rose  38%,  according  to  MBA. 

“What  we’re  really  seeii^  is  that  people 
are  adding  c^}acity,  but  they  are  not 
increasing  staff  size,  and  somehow  the 
staff  is  figuring  out  how  to  deal  with  it,’’ 
says  Mark  Levin,  a  partner  at  MBA.  “And 
a  lot  of  it  has  to  do  with  improved  levels  of 

ments,  Levin  says,  {xoductivity  gains 
are  beii^  achieved  because  data  center 
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Datacenter 
Double  Duty 

Studies  show  that  IT  workloads  are 
rising  as  technology  is  added  but  staffing 
levels  plateau.  By  Patrick  Thibodeau 


ATA  CENTERS  continue  to  be  filled  with  more 
and  more  IT  systems,  but  enterprises  aren’t 
necessarily  hiring  more  people  to  manage 
that  new  equipment,  two  surveys  have  found. 

In  a  survey  conducted  in  Match  by  AKX)M, 
a  data  center  managers  group,  37%  of  the 
reqxmdents  said  they  had  reduced  their  data 
center  staffs  over  the  past  three  years,  and  29%  said  they  kept  their 
staffing  levds  the  same.  The  balance,  nearly  35%,  increased  staffing. 

But  over  that  same  perfod,  nearly  74%  of  the  data  centers 
increased  their  physical  server  count,  according  to  the  AFCOM 
poll  of  360  IT  managers  and  other  senior  IT  executives. 

The  upshot  is  that  66%  the  data  centers  covered  in  the 
AFCOM  survey  are  managing  more  systems  with  the  same 


workers  are  simply  taking  (m  more  work. 

center  automation  are  making  the  data  center  more  efficient," 
says  John  Longwell,  vice  president  of  research  at  Computer  Eco¬ 
nomics,  an  IT  research  firm  in  Irvine,  Calif.  “At  the  same  time, 
server  counts  are  still  rising,  despite  all  the  yakking  about  server 
consolidation  and  date  center  ccmsolidation." 

But  this  is  also  a  consistent  long-term  trend.  Computer  opera¬ 
tors  (now  called  systems  administrators)  used  to  account  for 
about  10%  of  the  IT  staff  back  in  1997,  says  Longwell.  Today,  they 
account  for  3.3%  of  the  IT  staff. 

Another  major  trend  that’s  shaping  date  centers  is  the  growth 
of  cloud  computing.  In  October  2009,  only  14%  of  data  centers 
had  implemented  any  form  of  cloud  computing,  aocordii^  to  the 
AFCOM  survey.  That  figure  now  stands  at  36%. 

“Our  prediction  is  that  80%  to  90%  of  ail  date  centers  will  be 
adopting  some  form  of  cloud  computing  in  the  next  five  years," 
says  Jili  Eckhaus,  CEO  of  AFCOM,  which  has  made  cloud  com¬ 
puting  a  priority  in  its  training  programs. 

Eckhaus  says  date  center  manages  are  more  interested  in  private 
douds  for  control  and  security  reasons,  but  she  notes  that  AFCOM’s 
adoption  estimate  also  includes  use  of  public  cloud  services. 

In  terms  of  budgets,  nearly  38%  of  the  respondents  to  the 
AFCOM  survey  said  they  expect  their  companies  to  increase 
their  date  center  budgets  in  2011,  while  41%  said  they  expect 
funding  to  remain  the  same  and  20%  said  it  would  decline. 

Eckhaus  says  the  survey  also  found  that  15%  of  the  date  centers 
don’t  have  data  backup  and  recovery  plans,  and  about  30%  don’t 
have  backup  sites.  “To  me,  these  statistics  are  shocking,”  she  says. 

Levin  says  he  isn’t  surprised  by  the  lack  of  spending  on  or  at¬ 
tention  to  disaster  recovery.  “We  thought  after  9/11  there  would 
be  a  significant  increase  in  disaster  recovery  spending  —  it  never 
happened,’’  he  says.  ♦ 
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When  Email  Gets  Hacked 


■  I  ■  executives  suffered  a  pt^rsonal 
I  security  incident  that  spilled 

I  over  to  the  workplace.  Here's 

The  executive  s  Yahoo  email  password 
was  compromised,  which  she  learned 
after  hearing  from  friends  who  told  her 
that  they  had  received  messages  from  her 
requesting  money  to  deal  with  a  crisis. 
You've  prdxibly  heard  similar  stories, 
but  whoever  hacked  the  executive's 
email  was  a  bit  more  clever  than  the 
awrage  cyberenjok.  One 
friend  was  suspicious  of 
the  request  and  asked 
for  verification  of  the 
executive’s  identity.  Most 

probably  give  up  and  move  on  to  another 
victim  at  that  point,  but  this  hacker  had 
sifted  through  the  executive’s  emails  and 
learned  enough  about  her  family,  vaca¬ 
tions  and  health  i.ssues  to  trick  the  friend 
and  dupe  her  into  wiring  the  money. 

her  Yahoo  Mail  account  for  a  variety  of 
activities,  including  setting  up  accounts 
with  her  bank,  her  brokerage,  an  airline 
and  various  shopping  sites.  The  Yahix) 
account  had  received  emails  containing 


dear-text  passwords  when  she  had  for¬ 
gotten  them.  Worse,  she  often  used  the 
same  password  for  multiple  accounts. 

1  advised  her  to  abandon  the  email 
account  and  to  contact  all  of  her  friends 
and  let  them  know  that  they  should 
disregard  any  mail  from  that  address. 

But  that  action,  or  simply  changing  the 
password,  probably  wouldn’t  be  enough 
to  stem  the  damage.  Most  identity 
thieves  will  download  all  the  email  from 
a  compromised  account,  as  well  as  data 
such  as  calendars  and  contact  lists,  to  a 
local  computer.  This 
is  quite  simple,  since 
many  webmail  clients 
allow  customers  to 
use  more  feature-rich 
email  clients  such  as 
Microsoft  Outlook  to  download  email. 

So  even  If  the  account  were  shut  down  or 
the  password  changed,  the  hacker  would 
probably  still  have  all  of  its  contents. 

Becau.se  the  compromised  content 
could  not  l)e  safeguarded,  I  also  told  her 
to  file  a  police  report;  contact  all  banks, 
credit  card  companies,  brokerages  and 
other  organizations  with  which  she  had 
done  business  online;  file  a  fraud  alert 
with  the  major  credit  agencies:  sign 
up  for  a  credit-monitoring  service:  and 


The  executive  gave  me  a  list  of  seven  SaaS  apps  that  had 
sent  password  reset  notices  to  her  compromised  account. 


Trouble 

Ticket 


obtain  a  new  email  address  and  update 
all  of  her  accounts  with  that  address.  I 
also  warned  her  to  refrain  frcmi  using 
any  PCs,  including  her  home  PC.  until 
we  could  verify  their  integrity,  since  wc 
still  didn’t  know  how  her  password  had 
lx*en  compromised. 

Dangerous  Habit 

In  the  course  of  our  cfuiversation,  1 
learned  that  this  incident  had  implica¬ 
tions  for  the  company.  You  sec.  we  have 
irK'rcased  our  use  of  software  as  a  service 
t{»  the  point  that  we  now  use  more  SaaS 
offerings  than  on-prcmist*s  applications. 
Some  might  see  this  as  an  achievement.  I 
see  it  as  a  security  nightmare. 

As  I’ve  explained  in  past  articles, 
most  SaaS  vendors  have  focustxl  more 
on  functionality  and  accessibility  than 
on  security.  This  incident  is  a  perfect 
example  of  how  that  approach  can  lead 
to  problems.  The  executive  had  a  habit 
of  forgetting  her  passwords  for  SaaS  ap- 
plication.s.  and  she  gave  me  a  list  of  seven ' 
SaaS  apps  that  had  sent  password  reset 
notices  to  her  hacked  email  acanmt  —  in 
clear,  unencrypted  text! 

Fortunately,  none  t)f  the  data  usc*d 
with  these  particular  apps  was  extrentely 
sensitive.  But  she  had  used  her  domain 
pas-sword  for  all  of  the  applications. 


password  and  then  log  in  to  all  tlx*  other 
applications  —  about  15  a!u>getlK*r 
were  tiol  syiKhnmized  with  Active  Direc¬ 
tory  or  configured  for  single  sign-on. 

Needless  to  say,  this  was  not  a  good 
day  for  this  executive.  But  on  a  positive 
note.  I  did  get  a  sponsor  for  my  security 
awareness  and  training  program.  ♦ 

T/iis  uwk’s  /oiiniuf  is  uTifferj  hy  a  n’u/ 

.strtinty  HKiriuger.  ‘‘Mathias  Thurman," 
whose  iHiim*  <IM(/  cHip/oyrr  /kiw  /xi’M  di.si'iii.si'd 
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When  Email  Gets  Hacked 


Lont‘ 


This  week,  one  of  our  C-level 
executives  suffered  a  personal 
security  incident  that  spilled 
over  to  the  workplace.  Here's 
what  happened. 

The  executive’s  Yahoo  email  password 
was  compromised,  which  she  learned 
after  hearing  from  friends  who  told  her 
that  they  had  received  messages  from  her 
requesting  money  to  deal  with  a  crisis. 
You've  probably  heard  similar  stories, 
hut  whoever  hacked  the  executive’s 
email  was  a  bit  more  clever  than  the 
average  cyberctook.  One 
friend  was  suspicious  of 
the  request  aixl  asked 
for  verification  of  the 
executive’s  identity.  Most 
email  hijackers  would 
probably  give  up  and  move  on  to  another 
victim  at  that  point,  hut  this  hacker  had 
sifted  through  the  executive’s  emails  and 
learned  enough  about  her  family,  vaca¬ 
tions  and  health  issues  to  trick  the  friend 
and  dupe  her  into  wiring  the  money. 

Naturally,  the  executive  had  used 
her  Yahoo  Mail  account  for  a  variety  of 
activities,  including  settit^  up  accounts 
with  her  bank,  her  brokerage,  an  airline 
and  various  shopping  sites.  The  Yahoo 


dear-text  passwords  when  she  had  for¬ 
gotten  them.  Worse,  she  often  used  the 
same  password  for  multiple  accounts. 

1  advised  her  to  abandon  the  email 
account  and  to  contact  all  of  her  friends 
and  let  them  know  that  they  should 
disregard  any  mail  from  that  address. 

But  that  action,  or  simply  changing  the 
password,  probably  wouldn’t  be  etuugh 
to  stem  the  damage.  Most  identity 
thieves  will  download  all  the  email  from 
a  compromised  account,  as  well  as  data 
such  as  calendars  aixl  contact  lists,  to  a 
local  computer.  This 
is  quite  simple,  since 
many  webmail  clients 
allow  customers  to 
use  more  feature-rich 
email  clients  such  as 
Microsoft  Outlook  to  download  email. 

So  even  if  the  account  were  shut  down  or 
the  password  changed,  the  hacker  would 
protobly  still  have  all  of  its  contents. 

Because  the  compromised  content 
could  not  be  safeguarded,  1  also  told  her 
to  file  a  police  report;  contact  all  banks, 
credit  card  companies,  Imdterages  and 
other  organizations  with  which  she  had 
done  business  online;  file  a  fraud  alert 
with  the  major  credit  agencies;  sign 
up  for  a  credit-monitoring  service;  and 


obtain  a  new  email  address  and  update 
all  of  her  accounts  with  that  address.  I 
also  warned  her  to  refrain  from  using 
any  PCs,  including  her  home  PC,  until 
we  could  verify  their  integrity,  since  we 
still  didn’t  know  how  her  password  had 
been  compromised. 

Dangerous  Habit 

In  the  course  of  our  conversation,  I 
learned  that  this  incident  had  implica¬ 
tions  for  the  company.  You  see,  we  have 
increased  our  use  of  software  as  a  service 
to.the  point  that  we  now  use  more  SaaS 
offerings  than  on-premises  applications. 
Some  might  see  this  as  an  achievement.  I 
see  it  as  a  security  nightmare. 

As  I’ve  exj^ained  in  past  articles, 
most  SaaS  vendors  have  focused  noore 
on  hinctkmality  and  accessibility  than 
on  security.  This  incident  is  a  perfect 
example  how  that  approach  can  lead 
to  prt^lems.  The  executive  had  a  habit 
of  forgetting  her  passwords  for  SaaS  ap¬ 
plications,  and  she  gave  me  a  list  of  seven 
SaaS  apps  that  had  sent  password  reset 
notices  to  her  hacked  email  account  -  in 
clear,  unencrypted  text! 

Fortunately,  none  of  the  data  used 
with  these  particular  apps  was  extremely 
sensitive.  But  she  had  used  her  domain 
password  for  all  of  the  applications. 

This  meant  we  had  to  chan^  her  domain 
password  and  then  log  in  to  all  the  other 
applications  —  about  15  altogether  —  that 
were  not  synchronized  with  Active  Direc¬ 
tory  or  configured  for  sir^e  s^-on. 

Needless  to  say,  this  was  not  a  good 
day  for  this  «cecutive.  But  on  a  positive 
note,  I  did  get  a  sponsor  for  my  security 
awareness  and  training  program.  ♦ 

This  week’s  ^mol  is  written  by  a  real 
security  manager,  **llattlias  Ttiurman  ” 
whose  name  and  employer  have  been  disguised 
for  obvious  reasons.  Contact  him  at  mathias_ 
thurman@yahoo.com. 


CTtie  executive  pve  me  a  list  of  seven  SaaS  apps  that  had 
sent  password  reset  notices  to  her  compromised  account. 
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MARKETPLACE 


They  say  work  smarter,  not  harder.  They 
must  be  using  our  processor. 


The  next  generation  of  intelligent  server  processors 
The  Inter  Xeon*  processor  5600  series  automatically 
regulates  power  consumption  to  combine  industry-leading 
energy  efficiency  with  intelligent  performance  that  adapts 
to  your  wodtload.  Check  out  the  new  inteNigent  features 
of  the  Xeon  5600  at  intel.com/itcenter. 


SEE  WHAT 
INTELUGENCE 
CAN  DO 


Servers  from  iXsystems  feature  the  Inter  Xeon*  processor  5600  series. 


Enterprise  Servers 
for  Open  Source 
www.tXsystems.cant 
1-855-GBEP-4-IX 


The  iX2216-10G  features  rfrial  on-tnarrt 
Intel-  8259966 10  Grgabrt  SFP+  Ports, 
rtual  on-lioarr]  Intel’  82576  Gigabit  Ports, 
amt  18  DIMM  slots  supporting  up  to  192GB 
of  DDR3  ECC  Reglstererf  memory.  Irteal  for 
HPC.  Data  Center.  Virtualization.  Clustering, 
and  Cloud  Computing  applications. 


energy  efficiency,  and  flexittle  virtualization. 


•  Dual  Intel*  Xeon*  5600  Series  Processors 

•  2U  Form  Factor  with  sixteen  2  5"  SAS^ATA 
Hot-Swap  Drive  Bays 

•  On-Board  Dual  Port  Intel*  82599EB 10 
Gigabit  SFP-r 


iX1204-10G 

•  Dual  Intel*  Xeon®  5600  Series  Processors 

•  1U  Form  Factor  with  4  Hot-Sww  SAS/SATA 
Drive  Bays 

•  On-Board  Dual  Port  Intel*  82599EB 10  GIgaM  SFP-r 
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OPINION 


T  PERKINS 


What  Suppliers  Can  Tell  You 
About  Your  Own  Business 


Strat^'c 
suppliers 
share  your 
most  crucial 
goal:  your 
long-term 
success. 


BartPcrkhKls 

managing  partner 
at  Louisville.  Ky.- 
based  Leverage 
Partners,  which  helps 
organaations  invest 
weil  in  IT.  Contact 


SO,  YOU’VE  SET  UP  A  PREFERRED  SUPPLIER  PROGRAM  to  obtain 
maximum  value  from  all  of  your  IT  suppliers.  You  design  your  IT 
contracts  to  get  the  best  combination  of  cost  and  service  for  desired 
products,  then  monitor  performance  against  the  contract. 


But  are  you  really  gating  the  most  from  these 
relationships? 

Few  companies  with  preferred  supplier  programs 
consult  even  their  most  strategic  suppliers  for  input 
on  creative  ideas  to  improve  IT.  They’re  missii^ 
out,  because  many  su{^liers  can  offer  valuable 
insights.  Think  about  it.  Strategic  si4)pliers  share 
your  most  crucial  goal:  your  long-term  success. 
These  suppliers  work  with  many  companies  in  a 
variety  of  industries,  giving  them  a  broad  perspec¬ 
tive  that  enables  them  to  objectively  gauge  the 
relative  effectiveness  of  different  approaches  to  IT 
challenges.  And  their  employees  can  provide  sug¬ 
gestions  unhampered  by  corporate  politics. 

A  supplier’s  fresh  perspective  could  be  helpful  in 
several  areas,  including  these: 

an  organization,  it’s  easy  to  turn  a  blind  eye  to 
processes  that  work  but  aren’t  truly  robust.  But  out¬ 
siders  aren’t  committed  to  the  status  quo.  In  fact, 
suppliers  often  have  incentive  to  make  a  client’s 
internal  processes  more  efiBcient  —  for  example, 
via  outsourcing  contracts  that  are  priced  with  the 
assumption  that  the  outsourcer  will  standardize 
processes  and  reduce  associated  costs.  AtkI  a  sup¬ 
plier’s  staff  will  never  believe  that  “we’ve  always 
done  it  this  way’’  constitutes  a  best  practice. 

And  what  suppliers  observe  often  ^)es  beyond 
processes  covered  in  the  contract  For  exanq>le, 
the  executive  management  team  at  one  Fortune 
500  company,  having  sought  fixed  bids  for  ail  new 
a{^lication  work,  was  mystified  when  all  the  major 


ny’s  requirements  documents  had  consistently  been 
incomplete,  often  resulting  in  massive  additions 
and  changes  during  a  project.  For  the  integrators, 
the  fixed-fee  contract  was  too  great  a  risk.  Manage¬ 
ment  now  demands  comprehensive  and  detailed 
requirements. 

Employee  evaluations.  You  might  use  360- 

but  you  can  still  get  additional  insights  from  your 
suf^liers.  The  major  drawback  of  employee  (pinion 
surveys  is  that  many  ertq^oyees  believe  that  man¬ 
agement  can  and  will  figure  out  who  wrote  which 
responses.  The  result  is  that  many  responses  are 
guarded.  Your  suppliers’  represenUtives,  however, 
can  offer  an  objective  perspective  on  your  staff’ s 
skills  and  morale,  both  from  firsthand  experieiKes 
aiKl  things  your  employees  have  said  to  them. 

Now  trends.  Strategic  su{^liers  can  alert  you  to 
industry  trends  long  before  they  appear  in  the  trade 
press.  When  a  supplier  informs  you  of  an  emerging 
trend  —  without  a  rdated  sales  pitch  —  pay  close 
attention. 

Some  conq>anies  ignore  or  reject  advice  frmn  exter¬ 
nal  sources,  cm  the  grounds  that  “we  know  our  busi¬ 
ness  best”  This  view  is  shortsighted.  Suppliers  offer 
an  invalual^  peT^)ective,  both  within  and  across 
irKhistries.  But  some  suppliers  are  hesitont  to  volun¬ 
teer  informatiorL  They  mi^  assume  that  you  already 
know  about  existing  problems,  tx  fear  that  they  mi^t 
offend  you  by  drawing  attention  to  weaknesses.  Either 
way,  it’s  up  to  you  to  ensure  that  this  potentially 
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dtSearcK 

Instantly  Search  Terabytes  of  Text 


Desktop  with  Spider 
Network  with  Spider 


Pubiish  (portabie  media) 


Engine  for  Win  &. NET 


Ask  about 

fully-functional 

evaluations! 


•  Supports  Exchange,  Outiook,  Thunderbird  and  other 
popular  email  types,  Including  nested  and  ZIP  attachments 
■  Spider  supports  static  and  dynamic  web  data  like  ASP.NET, 
MS  SharePoint,  CMS,  PHP,  etc. 

>  API  for  SQL-type  data,  including  BLOB  data 


25+  full-text  and  fielded  data  search  options 

•  Federated  searching 

•  Special  forensics  search  options 

•  Advanced  data  classification  objects 


APIs  for  C++,  Java  and  .NET  through  4.x 

•  Native  64-bit  and  32-bit  Win  /  Linux  APIs;  .NET  Spider  API 

•  Content  extraction  only  licenses  available 


unmatched  by  any  other 
product* 

Redmond  Magazine 


www.dtSearch.com  •  i-soo-it-finds 


We  Buy 

Memory!. 

For  PC,  Server,  and  Laptop  ^ 

Wanted,  Call  or  Email  now!  1* 

^ :  Vr  ALvV,- 
ZN  riRST  In 

NE  TO  BUY 

Server  Memory 
■  Intel  S  AMD  CPU’s 

-UK  PRODUCTS 

■  Cisco  Switches 

OESEHVi 

M  ca\\  ^ 

TFR  'W 

FOR  THE  FIRST  TIME  EVER.  INDIVIDUALS  CAN  NOW  JOIN 

THE  CONSUMER  ELECTRONICS  ASSOCIATION! 

The  tow  price  leader  for  quality  memory  modules  since  1989 

(239)-596-2254 

JeffSMSmennory@gmail.com  1  www.smsassembly.com 

Qcea 

the  most  openings,  says  Dice.  But  Detroit  greatly  outpaced  them  in  terms  of  th^r- 
centage  increase  from  February  2010  levels.  And  Detroit  was  far  from  the  am  Rust 
Belt  city  to  make  the  top  10.  \ 


ASK  A  PREMIER  100  IT  LEADER 

Jay  Leader 

I  he  CIO  at  iRobot  answers 
questions  about  the  value  of 
training  in  public  speaking, 
how  to  talk  to  job  interviewers 
and  more: 


Law  Firms 
IT  Consultants 
Staffing  Agencies 


Place  your  Labor  Certification  Ads  Here 


Are  you  frequently  placing 
legal  or  immigration  advertisements? 

Let  us  help  you 
put  together  a 
cost-effective  program 
that  will  make  this 
time-consuming 
task  a  little  easier. 

Contact  us  at: 

800.762.2977 


iTlcareers 


Looking  for  a 
challenging 
IT  Career, 
shouldn’t  be 
such  a 
challenge. 


Find  your  ideal  job  at 
www.ITCareers.com. 


iTlcareers 


‘For  Cause/  Defined 


program  was  told  to  abort.  He  offered 
to  update  the  procedure  to  lock  for 
my  SSN.  I  declined  -  and  understood 
thgi  what  'for  cause'  meant." 

Your  Tax  Dollars 
At  Work 

agency  decides  to  test  80.000  pages 


lHOBMTOWa.MAY 


Today,  making 
dedskNis  without 
data  ’s  inex¬ 
cusable,  if  not 
anachronistic. 


is  the  author  of 
The  New  Know.  Innovation 
Powered  by  Analytics 
artd  executive  director 
of  the  IT  Leadership 
Academy  at  Florida  State 
College  at  Jacksonville. 
You  can  contact  him  at 
thorntonamay@ 


It's  the  Data,  Stupid 


The  great  recession  is  hopefully  now  behind  us,  but  its  effects 
will  be  with  us  for  eternity.  That’s  because  the  recession  fundamen¬ 
tally  changed  how  people  think  about  the  world,  in  two  ways. 

First,  it  focused  a  hareh  spotlight  on  the  quality  of  decision-making 

in  the  modern  enterprise.  Second,  and  probably 
more  signiBcantly,  it  called  into  question  the 
legitimacy  of  the  leaders  making  those  decisions. 

Martin  Wolf,  associate  editor  at  the  Financial 
Times,  summed  up  the  whole  tragic  scenario  whe 
he  said  that  most  people  “no  longer  believe  that 
[executives]  know  what  they  ate  doing." 

The  only  way  we  can  win  back  the  trust  of 
those  we  would  lead,  those  who  would  buy  from 
s  and  those  who  would 


data-based  leaders.  Organizations  that  do  not 
embrace  the  realities  of  big  data,  employ  the  ser¬ 
vices  of  data  scientists  and  banish  data-challenged 
CEOs  will  fail,  and  fail  quickly. 

An  important  potential  first  step  on  the  path 
to  resuscitating  trust  in  leadership  is  to  ascer¬ 
tain  where  your  CEO  stands  vis-a-vis  data-based 
leadership.  1  was  very  surprised  to  discover  on  the 
blog  of  Ben  Horowitz,  who  with  Marc  Andreessen 
is  co-finmder  and  general  partner  of  the  venture 
capital  firm  Andreessen  Horowitz,  the  following 
eraluation  of  CEO  decision-makii^ 

“Every  decision  that  a  CEO  makes  is  based  on 
incomplete  information.  In  fact,  at  the  time  (tf  the 
decision,  the  CEO  will  generally  have  less  than 
io%  of  the  information  typically  present  in  the 
ensuing  Harvard  Business  School  case  study.” 

As  a  student  of  management,  I  will  be  the  first 

to  be  made  with  full  certainty  and  100%  of  the 
information  required.  But  I  differ  violently  with 
Horowitz  when  he  celebrates  the  courage  of 
CEOs  who  make  decisions  under  circumstances 


reverential  to  do  the  hard  work  required  to  gather 
the  data  that  would  inform  a  prudent  decision. 

Ttxlay,  making  decisions  without  data  is  inex¬ 
cusable,  if  not  anachronistic  —  it’s  inconsistent 
with  realities  of  the  present  day  or  the  big- 
dau  future  toward  which  we  ate  hurtling.  Reid 
Hoffman,  the  executive  chairman  and  co-founder 
of  Linkedin  and  a  partner  at  venture  capital  firm 
Greylock  Partners,  told  the  tribal  elders  of  Silicon 
Valley  that  he  believes  the  next  big  thing  —  the 
real  meat  in  the  hype  sandwich  called  Web  3.0  — 
will  be  data. 

My  research  suppruts  Hoffman’s  forecast  Post- 
Great  Recession,  I  have  been  gcat^  door  to  door  in 
the  nation’s  C-suiles  seeking  to  assemble  a  compos¬ 
ite  take  on  enterprise  decision-making.  Several  en¬ 
vironmental  truths  have  emerged.  And  Truth  No.  1 
is  that  sometime  between  Berttie  Marloff  going  to 
jail  and  the  US.  govertunent  bailing  out  the  banks, 
the  world  rediscovered  data.  ’The  world  is  awash  in 
data.  Everyone  is  a  data  user  and  creator.  Everyone 
emits  a  trail  of  digital  exhaust  that  is  machine- 
readable  and  algorithmically  analyzaUe. 

But  not  everyone  is  a  data  scientist.  And  every 
organization  needs  one. 

While  data  has  been  exploding  around  us, 
arrother,  less-commented-upon  [^nomenon  has 
occurred:  A  select  group  of  professionals  skilled 
in  obtaining,  scrubbing,  exploring,  modeling 
and  interpreting  data  has  set  up  shop  in  high- 
performance  organizations.  ’These  are  data  scien¬ 
tists,  creating  high-value  prorhicts  from  the  raw 
data  that  constitutes  the  digital  world  we  live  in. 

And  the  CEOs  who  deserve  to  lead  are  creating 
a  space  in  the  enterprise  for  them.  * 
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http://gettag.r 


Let's  talk  real  business  productivity 
for  the  cloud. 

Microsoft  Office  365  is  changing 
the  conversation. 


Introducing  Microsoft  Office  365,  cloud-based  versions  of  Exchange, 
SharePoint,  and  Lync  with  a  full  version  of  Microsoft  Office  and  advanced 
security  features.  It  enables  everyone  in  your  company  to  collaborate  in 
real  time,  across  the  office  or  around  the  globe.  And  because  it's  all  hosted, 
supported,  and  updated  by  Microsoft,  you  can  focus  on  business  instead  of 
software  updates.  Fewer  headaches.  More  productivity.  That's  Cloud  Power. 
Find  out  more  about  our  cloud  productivity  solutions. 
Microsoftcom/cloud/offtce365 


